Public
- Public
- Network
- Groups
- Popular
- People

Conversation

Notices

Eugen (gargron@mastodon.social)'s status on Wednesday, 01-Dec-2021 18:17:19 CET Eugen

I'm terribly sorry for today's downtime. We are now back.
Post-mortem:
Yesterday my hosting provider, Hetzner, received an abuse report for our entire IP due to a user account that apparently was used as a botnet controller. I suspended the account immediately, but forgot to submit a statement to Hetzner.
After 24 hours, the IP to mastodon.social was locked by Hetzner. I've reached out to them as soon as I learned of this.

In conversation Wednesday, 01-Dec-2021 18:17:19 CET from mastodon.social permalink
- Ekaitz Zárraga 👹, C3PO and Mercè repeated this.
- Eugen (gargron@mastodon.social)'s status on Wednesday, 01-Dec-2021 21:07:13 CET Eugen
  in reply to
  
  We're talking about an account that was created through normal means, that is not really distinguishable from just any random account, but contains something like "hello 1.2.3.4|" in its bio. The way they seem to be used is that some botnet software checks the profile to get its commands that way. It is not a Mastodon vulnerability and I don't think its specific to Mastodon either.
  
  In conversation Wednesday, 01-Dec-2021 21:07:13 CET permalink
- C3PO (c3po@masto.rocks)'s status on Wednesday, 01-Dec-2021 21:07:26 CET C3PO
  in reply to
  
  @Gargron 🤔
  
  In conversation Wednesday, 01-Dec-2021 21:07:26 CET permalink

Feeds

tiflolinux.org - GNU Social is a social network, courtesy of tiflolinux.org. It runs on GNU social, version 2.0.1-beta0, available under the GNU Affero General Public License.

All tiflolinux.org - GNU Social content and data are available under the Creative Commons Attribution 3.0 license.