@nytpu @snow Yeah, I've deployed shit and had it immediately hacked before, and had no idea on how they got in. I hadn't even SSH'd in and installed git yet.
My best guess for that incident? Password-based SSH + weak randomness from the VPS management panel for generating a root password.
(And possibly sending the password over unencrypted SMTP. This was the early 2010s.)
https://furry.engineer/@soatok/113524385221847746
No replies.
────
────