New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Also: don't care so much about brute force on port 22. As long as your password isn't 'lol1234' you don't really have a problem.
I have 2 test servers using password "1" and haven't had problem yet
Are they listening on a public IP? If so, this is very dangerous, they will get abused for sure.
@c1bl change it to admin and watch yourself get pwned
No worries, I banned any IP for 24 hours after first failed log in
Does online.net offer to transfer the dedibox 4814? If yes give me offers, please.
It's still quite a bit of a worry, especially so considering you just told us all your password here.
As long as you guys find a server can log in using password "1". It's mine, don't abuse it. Thanks :P
No, they don't allow it.
That's so simple password. I will change my SSH port, will that help me. I have also installed fail2ban.
Edit: Last failed login: Sat Nov 29 13:25:07 CET 2014 from 1X0.11.2XX.14X on ssh:notty
There were 4 failed login attempts since the last successful login. Even when the dedi was turned off, how can people try it. Pl let me know.
test, test123, asdf, login, root and similar are also often used passwords for testing purposes where people forget to either shutdown/destroy the machine or change the password afterwards.
Yes, but isn't needed. People do brute force all the time, as long as you are using a decent password you are fine.
Clearly, the dedi was online at that time.
How long will it take someone to try the entire Online.net IP range with the password '1'?
^But I turned it off and also I got a mail from Online.net that your dedi is down. And I checked it on their control panel, it was down. Also I am unable to install nginx/ Apache. Can u give some proper link so that I can read and Install it .
It depends, if the script is well written and with good speed cpu and net, maybe half an hour.
Need to guess the user also
username even harder guess than password, lol
I usually use really-hard-to-type username, and very simple password
How to know the people who tried to login on the server?
lastbIt's not people, just scripts.
Just 2 minutes ago in IRC, for those people who missed it:
"I know that'll sound awful to most of the channel, but anyway, does anyone has ideas what should I put on my idling kidéchire?"
A lot of people sure are bitter about missing out on a deal... jeez.
I had 2 of mine from previous offer idling for a couple months, but now they're getting used. It was still cheaper to hold onto them for 2 months, not doing anything, than it would be to purchase similar servers at retail.
Why keep quiet when you can selfishly shout about others being selfish?
Yep.
PS: Even the bigger, regular plans are out of stock. And that being the point, the lowest offer for now is like ~60euro/month servers, plus installation fee.
The specials do not have install fees.
I've got two of these spare and I was thinking of doing my own PDNS cluster with MySQL master and slave for DNS.
How safe is it to do this with two machines in the same datacenter (both my boxes are DC3). What are the odds of the datacenter having an outage and taking out my DNS?
Greater than 0%, if you want 100% uptime then seek an additional box in a different DC.
If you have only two nameservers, having them both in the same DC is an insanity and defeats the whole point of even having multiple nameservers.
Sometimes I fear for what future brings, as the world will not be united and caring, but selfish and ignorant.