Fuel Economy, Hypermiling, EcoModding News and Forum - EcoModder.com - View Single Post - The Un-Smartphone

redpoint5 · 09-13-2022, 09:56 PM

Well, you might be the wise one realizing that convenience might be very inconvenient at times.

Yesterday my RDP session to a headless PC dropped while I was on it. I almost dismissed it as nothing except that both are hardwired to the same network switch. I checked the Security event logs and found about 2 failed login attempts per second from a handful of IPs using Admin and Administrator as the login. Something was trying to brute force my PC. I'm a dummy for having port-forwarded 3389 out of laziness.

My router occasionally locked up and had to be rebooted. Stranger yet, I could log into the webGUI, but couldn't change the login name or password. The dang thing accepted my password to log in but rejected the same one to change it. Factory reset and firmware upgrade time.

IP lookup didn't tell me who owned them, but they trace back to Germany, which might just be a proxy.

Now I'm getting serious about changing passwords and enforcing 2FA.

Then again, Man In the Middle attacks started with phone lines. Keeping secrets among people has been an issue going back to the whisper.

09-13-2022, 09:56 PM	#2 (permalink)
redpoint5 Human Environmentalist Join Date: Aug 2010 Location: Oregon Posts: 12,811 Acura TSX - '06 Acura TSX 90 day: 24.19 mpg (US) Lafawnda - CBR600 - '01 Honda CBR600 F4i 90 day: 47.32 mpg (US) Big Yeller - Dodge/Cummins - '98 Dodge Ram 2500 base 90 day: 21.82 mpg (US) Chevy ZR-2 - '03 Chevrolet S10 ZR2 90 day: 17.14 mpg (US) Model Y - '24 Tesla Y LR AWD Pacifica Hybrid - '21 Chrysler Pacifica Hybrid 90 day: 43.3 mpg (US) Thanks: 4,327 Thanked 4,479 Times in 3,444 Posts	Well, you might be the wise one realizing that convenience might be very inconvenient at times. Yesterday my RDP session to a headless PC dropped while I was on it. I almost dismissed it as nothing except that both are hardwired to the same network switch. I checked the Security event logs and found about 2 failed login attempts per second from a handful of IPs using Admin and Administrator as the login. Something was trying to brute force my PC. I'm a dummy for having port-forwarded 3389 out of laziness. My router occasionally locked up and had to be rebooted. Stranger yet, I could log into the webGUI, but couldn't change the login name or password. The dang thing accepted my password to log in but rejected the same one to change it. Factory reset and firmware upgrade time. IP lookup didn't tell me who owned them, but they trace back to Germany, which might just be a proxy. Now I'm getting serious about changing passwords and enforcing 2FA. Then again, Man In the Middle attacks started with phone lines. Keeping secrets among people has been an issue going back to the whisper. __________________ Gas and Electric Vehicle Cost of Ownership Calculator Give me absolute safety, or give me death!