So, when someone or something trying to find SSH or FTP on my IP address, they just going into the list and can't connect anymore. Also, the FileZilla comes bundled with some crapware from now so click the other downloads link to download a version without bundles.Īlso, I'm using a firewall on my home Mikrotik device set up to add any scanners into the blocking list to tarpit (it's attack on the attacker, just opens the connection always but never transfers any data to hold the attacker) any TCP and drop any UDP from the attacker's IP address.
Also if this is mandatory you can use it behind your own VPN service or you can change your FTP server's default port into something unusual to hide it's presence. Using FTP server with access from all the world is totally bad idea. I checked the logs - this was their first and only attempt. No plans (nor need) to open it up again in the near future. I shut the whole thing down right as they were going for a directory listing. I formerly had it going to share files within the house. But THEN, sirs and madams, I watched as the same IP suddenly entered MY uname (which happens to be a rather unique nickname of mine) and, after a few attempts, MY password. I watched, real-time, as whoever/whatever began to spit a bunch of garbage characters.įail. Well one day, I just happened to be down there and noticed yet another attempt. When poking around on the basement server box, I’d occasionally see some failed logins from China/Russia and the like. I had the FileZilla window opened up on a 2nd monitor most of that time. Limited access to a single directory containing the files in question. Then I left it open, maybe a month, just in case he needed to get back to it (also: sheer laziness).
I set up an FTP server for my nephew a few weeks ago, just to transfer a couple files outside email attachment limits. So I’m (generally) pretty careful (as in, I know that FTP is not the modern, secure way to transfer files…but usually good enough, given my limited application). I’ll preface this by saying that I know just enough about networking, in general, to get myself in trouble.
0 kommentar(er)
