This is an automated archive made by the Lemmit Bot.
The original was posted on /r/selfhosted by /u/DrMcTouchy on 2024-09-30 10:50:45+00:00.
I decided not to blur the IP addresses because screw them.
This is a friendly reminder to go through your firewall and port-forwarding settings occasionally.
I had a Filezilla Docker container running, and I needed to forward a port through the firewall a while back. It was just sitting there idle, waiting for me to use it again. Or, for someone else to…
Plex started acting up, so I logged in remotely to see what was going on, only to find the CPU pegged at 100%. I pulled the logs of the Docker container that was using all the CPU time, and saw that it was running XMRig, which I definitely didn’t install.
I’m not at home right now so I can’t dig into it any deeper yet, but it looks like I (foolishly) rolled out the carpet for them. Luckily my GPU isn’t mapped to this container, and I caught it pretty quick, so after going through my firewall settings and cleaning up the remains of my other projects, I’m hopeful this is a one-time occurance.
Just goes to show that anonymity is not secure by default.
EDIT: Container used was on Unraid’s Community Apps. Filezilla
Edit2: I’m working night shift so I’m gonna go take a nap, I promise I will get back to answering questions and trying things after I get up.