This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.

Getting Attacked on my home server
#1
Getting Attacked on my home server
Hi All.

I've just come home and logged in, found there had been 2000+ server failed log in attempts.

Within a space of a few seconds of logging out and back in I found that there was 37 attempts.

How do I find out who or what is doing this? I have powered my centos off for Now.

centos 7.
Reply
Thanks given by:
#2
RE: Getting Attacked on my home server
2000+ attempts seems like brute force...
Considering your previous issue reported, the attack can be the source of the problem.

The wordpress theme you are using was bought from a safe source?

Anyways I do not believe that these forums are the place for you to get help on this issue.
Be happy that they are just login attempts, it means they did not got in yet Wink
My Sentora Resources
[Module] Mail Quota Count | Vagrant Box with Sentora

[Image: vanguardly-logo-micro.png]
Graphic and Web Design. Development.
www.vanguardly.com


Reply
Thanks given by:
#3
RE: Getting Attacked on my home server
You sir are a legend Smile

I do believe I got my wordpress theme from a dodgy source you're right - it's that and possibly the cause of my hanging issues causing also dns problems etc etc

Actually my root password is pretty simple, their brute force thing isn't working - also going to install fail2ban etc.

I am currently backing up all my system, installing Ubuntu 14 on it dedicated so not Virtual, installing Sentora and see if still have this issue.

I really want to host from home for now, get some funding through then rent out some proper servers or invest in a leased internet line and more servers.

Thanks all for your help.
Reply
Thanks given by:
#4
RE: Getting Attacked on my home server
WordPress is safe, the issue is that there is many themes and plugins with bad code, sometimes intentionally bad.

Even considering they are trying to login to Sentora, the theme could have tipped them about the server domain/IP.

Also, your domain and DNS entries are public, there's nothing you can do to stop them.from trying.

Installing a too firewall is also a good move (there's a good tutorial to install CRF on the how to section).

Good lick and have fun!
My Sentora Resources
[Module] Mail Quota Count | Vagrant Box with Sentora

[Image: vanguardly-logo-micro.png]
Graphic and Web Design. Development.
www.vanguardly.com


Reply
Thanks given by:
#5
RE: Getting Attacked on my home server
Install CSF Firewall and install Wordfence plugin in your Worpress
Change your SSH port and never use nulled templates from bogus websites Smile
Reply
Thanks given by: technicalnetwork


Possibly Related Threads…
Thread Author Replies Views Last Post
Server Status Monitor rsthomas 5 16 ,801 05-15-2019, 01:05 AM
Last Post: Ron-e
Show us ya.......... home server setup. Nigel 34 133 ,114 04-06-2019, 06:36 AM
Last Post: Me.B
(SOLVE)Transfer full website with MySQL / WordPress from one server to another patthe 1 6 ,911 11-24-2016, 08:21 AM
Last Post: Me.B

Forum Jump:


Users browsing this thread: 1 Guest(s)