• tetris11@lemmy.ml
    link
    fedilink
    arrow-up
    3
    ·
    11 months ago

    I think they were either computing crypto-hashes and passing on the results back home (via Tor), or they were using my machine to send out several ping/fetch requests over Tor to DDOS some unknown target machine.

      • tetris11@lemmy.ml
        link
        fedilink
        arrow-up
        2
        ·
        edit-2
        11 months ago

        I want to say “yes” but you should still try to change the default ports for any process open to the web. Just because they can’t guess your ssh, doesn’t mean they can’t upload a root php script to your webserver which allows file uploads.

        Just be as invisible as possible. Run nmap on your localhost with the defaults and see if anything is set to open. If so, change that port.