Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi all! We have been experiencing an issue on site where threads have been missing the latest postings. The platform host Vanilla are working on this issue. A workaround that has been used by some is to navigate back from 1 to 10+ pages to re-sync the thread and this will then show the latest posts. Thanks, Mike.
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Tech Revenge

  • 05-08-2010 3:10pm
    #1
    jester77
    Registered Users, Registered Users 2 Posts: 11,264 ✭✭✭✭


    For the past few weeks someone has been sending requests and port scans through 125.45.109.166 trying to access my home network and they have made multiple attempts to try and log into my servers via FTP and SSH. I renew my IP address but that only lasts a few hours before they are at it again.

    I see that I am not the only one being pestered. Anyone got any ideas on how to turn the screws here?


Comments

  • #2
    starbelgrade
    Closed Accounts Posts: 20,739 ✭✭✭✭starbelgrade


    Download Peerblock.


  • #3
    syklops
    Closed Accounts Posts: 18,966 ✭✭✭✭syklops


    If you renew your IP address, how are they finding you again?

    Have you DynamicDNS set up or something?


  • #4
    jester77
    Registered Users, Registered Users 2 Posts: 11,264 ✭✭✭✭jester77


    Yeah, I've just a basic Netgear router that has very little settings to protect or block these attacks and I use DynDNS to connect to my network from outside


  • #5
    MunsterCycling
    Registered Users, Registered Users 2 Posts: 4,864 ✭✭✭MunsterCycling


    Then make a change to your DynDNS account name and you should shake them off, they are clearly using your DynDNS address to continue the attempts after you renew.


  • #6
    witnessmenow
    Registered Users, Registered Users 2 Posts: 7,207 ✭✭✭witnessmenow


    MunsterCycling wrote: »
    Then make a change to your DynDNS account name and you should shake them off, they are clearly using your DynDNS address to continue the attempts after you renew.

    Or maybe there is a some software "phoning home"


  • Advertisement
  • #7
    CreepingDeath
    Closed Accounts Posts: 8,015 ✭✭✭CreepingDeath


    I looked up the IP address on http://cqcounter.com/whois

    It's a Chinese IP address.
    There are a number of e-mails listed for that IP range where you can report abuse.

    abuse@chinaunicom.cn
    abuse@public.zz.ha.cn
    abuse@cnc-noc.net


  • #8
    spider guardian
    Closed Accounts Posts: 884 ✭✭✭spider guardian


    not much you can do about it man, if someone wants to try and access your public-facing setup then they can try all they want. your best bet is to make sure your firewall is properly configured, know exactly what programs you have listening for connections and make sure you use strong passwords. Follow all that and you'll be sound


  • #9
    jpl888
    Closed Accounts Posts: 407 ✭✭jpl888


    You could change the SSH port your server is using to a non-standard one. Not sure what you would do about ftp though. Perhaps load fail2ban assuming you are using some form of Linux.


Advertisement