Skip to content
View in the app

A better way to browse. Learn more.

Unraid

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Process Jonason using a tone of CPU -BitCoinMiner detected

Featured Replies

image.png.4143e997b5dde159e9b757f65ffcc030.png

 

Hey guys, does anyone know what this process belongs to? It had been smashing my server for a day.. I killed the process but it came back.. any idea's?

 

Location of file: image.png.42ebd2741ff63aa1c52257f0ea4e5d11.png

 

running 6.6.7

 

Addy

 

I think I found out why its using so much..

image.thumb.png.6a94df93f6e55fda24e034691ef1ed96.png

 

How the fuck does a miner get on my unraid..

Edited by Addy

Do you have any incoming ports open to the internet?

  • Author
2 minutes ago, jonathanm said:

Do you have any incoming ports open to the internet?

I have some ports open for Plex. I did DMZ it (i know) for like 5 minutes the other day to fix something real quick though - could this have been how it got in.

 

When I delete the file, it comes back any idea how I can stop that from happening?

  • Author
12 minutes ago, jonathanm said:

Does it survive a reboot?

Looks like a reboot killed it, its been back up for about 5 minutes now. I'll keep an eye on it.. Thanks for your help. 

 

I think I should have put a password on root. I honestly didn't expect to love unraid so much and didn't plan this very well

On the plus side, it would almost take an unraid specific attack to survive a normal reboot, on the negative side, unraid is NOT secured, even with a password. You must not expose it to untrusted networks.

 

This situation is rapidly improving, I'm hoping within a year it will no longer be a necessary warning.

 

DMZ with no root password, I expect it probably took about 3 seconds to be penetrated. No, I'm not exaggerating.

  • Author
1 minute ago, jonathanm said:

On the plus side, it would almost take an unraid specific attack to survive a normal reboot, on the negative side, unraid is NOT secured, even with a password. You must not expose it to untrusted networks.

 

This situation is rapidly improving, I'm hoping within a year it will no longer be a necessary warning.

 

DMZ with no root password, I expect it probably took about 3 seconds to be penetrated. No, I'm not exaggerating.

Thanks mate

27 minutes ago, Addy said:

I have some ports open for Plex.

Just to clarify my statement, opening ports is as risky as the answering service. Plex is popular, and if it got exploited, we would hear about it, so very low risk exposing ports for plex. Each port that is forwarded should be evaluated as to what software is answering on that port. Unraid's GUI should not be exposed.

Archived

This topic is now archived and is closed to further replies.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.