Is this a concern?

Recommended Posts

I've just seen this in my log. Never seen anything like this before. Is this someone trying to gain access to my server? Anything I should worry about?


Jan 26 15:43:38 unRAID nginx: 2023/01/26 15:43:38 [crit] 24956#24956: *1977125 SSL_do_handshake() failed (SSL: error:141CF06C:SSL routines:tls_parse_ctos_key_share:bad key share) while SSL handshaking, client:, server:


That IP address is from Nigeria.




Link to comment
12 minutes ago, nomisco said:

The password is long and not the kind you could guess.

No good reason to rely on that. Nothing outside your LAN should be able to access your server except specific ports you have setup and secured for that purpose.


Link to comment
Jan 23 12:04:26 unRAID webGUI: Successful login user root from

That one is not in abuseipdb. Do you recognize it?


You also have some problems with your pools, probably connection problems with ftp_cache.


corruption on pool cache (csum errors). Have you done memtest recently?

Link to comment

ljm42: Changed the port to something else.


trurl: Yes, I do recognise the IP address, that's OK. And I'm aware of the corruption in the cache pool. I don't know if it's a failing SSD or not. No further attempts to access the server. The only things which are forwardded on my router are the Plex server (running on unRAID) and the port aforementioned which I've changed for the WebUI remote access.

Edited by nomisco
Link to comment
  • 4 weeks later...

Old news... Anyone with their own router knows that "bots" search or attack or look or whatever you want to call it.


No one can stop "attacks" on the Internet. The Internet was actually created to stop "attacks" from being able to stop it.



  • Like 1
Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.