upthetoon

Members
  • Posts

    107
  • Joined

  • Last visited

Converted

  • Gender
    Undisclosed

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

upthetoon's Achievements

Apprentice

Apprentice (3/14)

2

Reputation

  1. Is the correct method from here now to do a rebuild of the drive back onto itself? Last time this happened to me (years ago) I'm sure I just re-enabled the drive but this doesn't seem to be an option.
  2. Thank you. Running the "Check Filesystem Status" function and following the steps to get it back online.
  3. Hi, I've had a disk 5 generate errors and go into emulated mode. I just removed an older disk a few weeks ago which was generating errors and spread the data across the existing drives. Is this drive looking like a dud now? Not a great time to be buying drives! ridcully-diagnostics-20210625-0913.zip
  4. I think an old port fwd rule I had in exposed it. I was using a weak password on the deluge front end too. I’ve since removed the forwarding rule and changed to a more complex password too.
  5. Just to update, I think this has originated from a malicious Deluge plugin. -rw-rw-rw- 1 nobody users 22041 Dec 27 17:45 booster-0.2-py2.7.egg
  6. Ok, thanks. I’d only restarted a day or two ago when the .1 came out.
  7. Hmm. So without something dodgy installed I should have been safe? That’s a worry then.
  8. That's the full list. 1&2 - Letsencrypt 3 - Sabnzbd 4 - Deluge 5 - Another torrent docker I dont use anymore 6 - Wireguard I've since deleted the torrent entries. Does leaving a FWD entry to a port that isnt in use on the internal side create a security risk?
  9. Is that what that forwarding rule does? I've always had a blindspot for network configuration... I set that 80 > 85 port forward up as letsencrypt runs on port 85 (and 448)
  10. These are the port forwarding rules I have. The miner was running under the user "nobody" which I use for applications.
  11. Hi, I noticed CPU activity at 100% this morning and "xmrig" was running. A quick search and there are a couple of other threads of this happening to others who have opened some of their ports. I've had reverse proxy set up for a good while but I don't think I have any ports open directly to the server. I've attached my diagnosis file if anyone can see anything suspicious that would be much appreciated. ridcully-diagnostics-20210312-0812.zip
  12. Last check completed on Fri 07 Aug 2020 08:24:00 AM BST (today), finding 0 errors. Duration: 1 day, 10 hours, 53 minutes, 4 seconds. Average speed: 111.5 MB/sec Looks like parity wasn't valid. That's a slight worry, not sure how that happened. Better than a hardware problem though...
  13. Yes, I've changed that setting now, thanks. Not sure why I had it like that in the first place. 25% through, no errors found on this new run...