I was looking at the auth.log and noticed a login using my alex account but with an IP address that is not mine. I contacted DO about this and got this response:
“I wanted to assure you that while the IP address does belong to DigitalOcean, it is not in use by any users, so this is not a hacking attempt, but general internal use. In other words, this is not evidence that your new Droplet has been hacked. I hope this reassures you.”
How can it be that DO uses some “internal use” IP address to login with my personal user account? Wouldn’t they have their own user account if they needed to login to my droplet to be able to create the realtime usage graphs in the control panel?
This is confusing and a bit worrisome. Besides, how am I ever supposed to know if a real hacker is logging in, or if it’s just DO?
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.