Setup a brand new OMV setup. Within hours my router is being bombarded with ping requests to the OMV ip and port. Port forwarding is off. No attempt to connect out of my private VLan and it should stay internal. So the only thing i can think of is that somehow OMV is able to be seen by Shodan? What is going on, this software is crazy unsafe.
Fresh install and immediately my Router is being bombarded by ping requests from foreign countries
-
How did you install? If your router isn't port forwarding, Shodan (had to look up what that was) shouldn't even know it exists. Lots of things scan for a web server which is what OMV is and is on the standard port.
-
But install OMV and boom, Russia, China, Iran are all suddenly interested in my ip address and i have received 50 pings over the last few hours
You didn't tell me how you installed OMV but unless you installed packages from a different repo that had hacked packages, I honestly don't believe this story.
I have taken OMV offline and will look at a different solution. But i would not even known about it if i wasn't scanning for it.
OMV is NOT causing this if you use the actual OMV repo. And very strange that you are scanning for it and it actually happens. I have used OMV since the beginning and have never had this happen. If you are scanning incoming hits, why not track outgoing traffic and tell us what servers are being hit??
-
Worse than that is how an internal, non-routable network address was pinged within hours of setting up OMV?
Are you trolling? How would an internal non-routable address be pinged from the outside world? What is pinging it? And how would someone ping a NAT'd address from the internet? That doesn't even make sense.
-
I have a feeling he has a torrent story going. ???
-
Restart the router and you will get a new IP address, unless you have a fixed IP address
-
all pings attempting to contact the OMV server itself
How? OMV wouldn't know its internet ip address and nothing on the internet would be able to contact it at it internal address. What is the url it is trying to hit? Show us the logs.
Will turn off all my docker containers and see if it stops.
What images? If they are file sharing, they are causing the problem not OMV.
Perhaps a github repository was poisoned.
Really? Only one person has the ability to commit. So, I doubt it. I look at every commit as well. And many other OMV users would be having this happen.
-
No torrents, all pings attempting to contact the OMV server itself, and my thoughts exactly. Will turn off all my docker containers and see if it stops. Perhaps a github repository was poisoned.
Can I ask you what router are you using?. Is this is one of the OTC Consumer grade type or something else?.
Jetzt mitmachen!
Sie haben noch kein Benutzerkonto auf unserer Seite? Registrieren Sie sich kostenlos und nehmen Sie an unserer Community teil!