I keep seeing the following line every 30 seconds or so in my rclone mount using rclone rc logs:
http: TLS handshake error from 126.96.36.199:57453: tls: first record does not look like a TLS handshake
The IP is unknown to me, and the port is different each time. Is this just an typical bruteforce attempt? If so, is there anyway I can secure my rclone further outside of using certs/HTTPS and htpasswd? Is there any way to block the IP with rclone/rclone rc itself or would this only be possible with external means like a software/hardware firewall?
Run the command 'rclone version' and share the full output of the command.
os/version: debian 10.13 (64 bit)
os/kernel: 5.10.0-0.deb10.24-amd64 (x86_64)
Which cloud storage system are you using? (eg Google Drive)
The command you were trying to run (eg rclone copy /tmp remote:tmp)
Can you give more details about this shared server? It is very rare having a server and not be able to use sudo. Is there maybe an additional firewall?
You could lock it to localhost and use vpn as already mentioned. Maybe nginx could work too.
Ultimately it's your risk to make it publicly accessible. In the end it's just a matter of time when someone actually tries to hack you and is successful with it.