github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 08:05:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #3557] 最近电脑中勒索病毒,如何配置可以更加安全 #2838

New issue
Closed
opened 2026-05-05 13:50:10 -06:00 by gitea-mirror · 3 comments
gitea-mirror commented 2026-05-05 13:50:10 -06:00
Owner
Copy link

Originally created by @arvinws on GitHub (Jul 29, 2023).
Original GitHub issue: https://github.com/fatedier/frp/issues/3557

Bug Description

最近电脑中勒索病毒,公司网管怀疑是我使用内网穿透工具导致,想了解下如何配置更加安全,之前的配置如下_

frpc Version

frp_0.33.0_windows_386

frps Version

0.38.0

System Architecture

linux/amd64

Configurations

#frps.ini
[common]
bind_addr = 0.0.0.0
bind_port = 50000
dashboard_addr = 0.0.0.0
dashboard_port = 7000
token = xxxxx
dashboard_user = xxx
dashboard_pwd = xxxx
log_file = ./frps.log
log_level = info
log_max_days = 3
disable_log_color = false

#frpc.ini
[common]
server_addr = 0.0.0.0
server_port = 50000
token = xxxxx

[rdp]
type = tcp
local_ip = 127.0.0.1
local_port = 3389
remote_port = 6000

Logs

No response

Steps to reproduce

...

Affected area

  • Docs
  • Installation
  • Performance and Scalability
  • Security
  • User Experience
  • Test and Release
  • Developer Infrastructure
  • Client Plugin
  • Server Plugin
  • Extensions
  • Others
Originally created by @arvinws on GitHub (Jul 29, 2023). Original GitHub issue: https://github.com/fatedier/frp/issues/3557 ### Bug Description 最近电脑中勒索病毒,公司网管怀疑是我使用内网穿透工具导致,想了解下如何配置更加安全,之前的配置如下_ ### frpc Version frp_0.33.0_windows_386 ### frps Version 0.38.0 ### System Architecture linux/amd64 ### Configurations #frps.ini [common] bind_addr = 0.0.0.0 bind_port = 50000 dashboard_addr = 0.0.0.0 dashboard_port = 7000 token = xxxxx dashboard_user = xxx dashboard_pwd = xxxx log_file = ./frps.log log_level = info log_max_days = 3 disable_log_color = false #frpc.ini [common] server_addr = 0.0.0.0 server_port = 50000 token = xxxxx [rdp] type = tcp local_ip = 127.0.0.1 local_port = 3389 remote_port = 6000 ### Logs _No response_ ### Steps to reproduce 1. 2. 3. ... ### Affected area - [ ] Docs - [ ] Installation - [ ] Performance and Scalability - [X] Security - [ ] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [ ] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others
gitea-mirror 2026-05-05 13:50:10 -06:00
gitea-mirror commented 2026-05-05 13:50:13 -06:00
Author
Owner
Copy link

@Glucy-2 commented on GitHub (Jul 29, 2023):

  1. 开启tls
  2. 你的frp版本太低了
  3. 穿透出去的服务没有做好防护
<!-- gh-comment-id:1656759055 --> @Glucy-2 commented on GitHub (Jul 29, 2023): 1. [开启tls](https://gofrp.org/docs/features/common/network/network-tls/) 2. 你的frp版本太低了 3. 穿透出去的服务没有做好防护
gitea-mirror commented 2026-05-05 13:50:14 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Jul 31, 2023):

首先,你没有保持版本更新,那么可能存在一些历史问题没有修复。

其次,当你提出这个问题的时候,说明你对将服务暴露在公网上的安全相关的事务可能并不是非常清楚,那么建议就不要暴露有风险的服务。可以参考示例使用 stcp/xtcp,服务不直接暴露在公网上,会很大程度上避免你的内部服务弱口令,存在漏洞等问题。

<!-- gh-comment-id:1657416386 --> @fatedier commented on GitHub (Jul 31, 2023): 首先,你没有保持版本更新,那么可能存在一些历史问题没有修复。 其次,当你提出这个问题的时候,说明你对将服务暴露在公网上的安全相关的事务可能并不是非常清楚,那么建议就不要暴露有风险的服务。可以参考示例使用 stcp/xtcp,服务不直接暴露在公网上,会很大程度上避免你的内部服务弱口令,存在漏洞等问题。
gitea-mirror commented 2026-05-05 13:50:15 -06:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Aug 31, 2023):

Issues go stale after 30d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.

<!-- gh-comment-id:1700086185 --> @github-actions[bot] commented on GitHub (Aug 31, 2023): Issues go stale after 30d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#2838
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?