Accidentally opened port 80 for my unRAID box to the internet, any tips for damage control?


Zero

Recommended Posts

Long story short, wanted to open port 80 for another machine and accidently entered my unRAID ip (it was a long day). So my unRAID box was open to the internet without any verification (was a fresh install and just set it up) for about 10~ hours, any tips for damage control and seeing if anyone messed with my server?
I would be open to a fresh install but I'd like to keep my dockers + files on my disk

Link to comment
3 minutes ago, unevent said:

Check syslog for any activity not generated by you.  If you intend to open common ports like http temporarily in the future, port forward from some obscure irrelevant port that is way out there so no one or the typical port scan won't ping it and discover it easily.

Yeah that is a good idea, a mistake to be learned from :)

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.