• tetris11@lemmy.ml
      link
      fedilink
      arrow-up
      3
      ·
      11 months ago

      I think they were either computing crypto-hashes and passing on the results back home (via Tor), or they were using my machine to send out several ping/fetch requests over Tor to DDOS some unknown target machine.

        • tetris11@lemmy.ml
          link
          fedilink
          arrow-up
          2
          ·
          edit-2
          11 months ago

          I want to say “yes” but you should still try to change the default ports for any process open to the web. Just because they can’t guess your ssh, doesn’t mean they can’t upload a root php script to your webserver which allows file uploads.

          Just be as invisible as possible. Run nmap on your localhost with the defaults and see if anything is set to open. If so, change that port.