aws 还是不要乱租给别人，给坛子里的老哥们提个醒

ff55

本帖最后由 ff55 于 2019-4-4 22:55 编辑

长期以来 两个号一直出租日本新加坡 lightsail给坛友，至今没有骗过一个人。今天收到aws的警告邮件

We've received a report(s) that your AWS resource(s) listed in the 'Affected resources' tab has been implicated in activity that resembles a Denial of Service attack against remote hosts; please review the information provided below about the activity.

Please take action to stop the reported activity. You would have also received an email notification from ec2-abuse@amazon.com with this same report. Please reply directly to that email with details of the corrective actions you have taken. If you do not consider the activity described in these reports to be abusive, please reply to that email with details of your use case.

If you're unaware of this activity, it's possible that your environment has been compromised by an external attacker, or a vulnerability is allowing your machine to be used in a way that it was not intended.

We are unable to assist you with troubleshooting or technical inquiries. However, for guidance on securing your instance, we recommend reviewing the following resources:

* Amazon EC2 Security Groups User Guide:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-network-security.html (Linux)
https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/using-network-security.html (Windows)

* Tips for Securing EC2 Instances:
https://aws.amazon.com/articles/1233 (Linux)
https://aws.amazon.com/articles/1767 (Windows)

* AWS Security Best Practices:
https://d0.awsstatic.com/whitepapers/Security/AWS_Security_Best_Practices.pdf

If you require further assistance with this matter, you can take advantage of our developer forums:

https://forums.aws.amazon.com/index.jspa

Or, if you are subscribed to a Premium Support package, you may reach out for one-on-one assistance here:

https://console.aws.amazon.com/support/home#/case/create?issueType=technical

Please remember that you are responsible for ensuring that your instances and all applications are properly secured. If you require any further information to assist you in identifying or rectifying this issue, please let us know in a direct reply to the email you received from ec2-abuse@amazon.com.

Regards,
AWS Abuse

Abuse Case Number: XXXXXXXX

---Beginning of forwarded report(s)---



* Log Extract:
>>

* Comments:
>>

讲的是某个人拿去攻击其他人。目前账号处于限制状态，可以登录，不能开机器，攻击机器处于黑洞，无法访问外网。这种情况几天前就发生了，我一直以为是aws的网络，换了ip就好了，直到今天登录aws账号，说我有一个事没处理，就是上面这个，让我发邮件解释。然后我登录了下邮箱。。




至于这个人，没骗人，所以就不发他的QQ号以及支付宝了，如果跟客服没py成功，一定会公布出来。
现在求问论坛老哥，怎么处理这事，怎么回复客服

ff55

前几天没注意，封了机器的出流量，但是可以建机器，现在新建机器都不行了

ff55

租了他10天，用了400G

308-

还好不是我，我租到期了虽然，楼猪人很好

rux

你永远不知道别人会拿来干什么，所以租这个事情，不仅是aws，适用于几乎所有小鸡

ff55

rux 发表于 2019-4-4 22:56

你永远不知道别人会拿来干什么，所以租这个事情，不仅是aws，适用于几乎所有小鸡  ...
现在咋回复啊，这个重要，撕逼才没那个工夫

Pyfq

只会开机场

rux

ff55 发表于 2019-4-4 22:59

现在咋回复啊，这个重要，撕逼才没那个工夫
不知道，没经历过这种情况

keruiff55

自己信息申请的号还是不要随便分享吧。。。Dear support staff:

  i'm sorry to make trouble for you.i have been destory my servers. maybe i leak ssh password.i have change ssh port and login with certificate.thank you for your remind。
我英文好差，不知道能不能过

Galileo

打起来，打起来！