If router firewall not good enough
Any update? Still having the problem every day?
Could be an issue with the ISP doing a man-in-the-middle attack. Or Mining Pool.
As i’ve been operating pools before there are many ways this can happen, Poolside, ISP or even Pool-host issues.
(my pool is lyra2z.com) You can try this and see if the problem remains, best would be to test all factors separately so you can rule out things.
If it were mitm, his hashrate would have stayed the same, but not on the pool. Locally in hiveos interface he see’s hashrate going down, like if a 2nd miner took some processing power.
Latest update:
i have changed time zone of rigs - i can now reboot them in day time, not in night 2:30.
second i have installed fresh copy of hiveos (new SSD) and now second day everything is OK
for looking strange connection and PROC for me is to hard work 
Humm, so with your new fresh copy, try to harden it a bit. Change passwords, don’t forward unnecessary ports from router (I hope your hive ip is not facing internet directly)
1 Like
yes, sure
i changed all all passwords, turned off VNC, disabled sheinabox, closed all ports i guest that will be enought
what time zone did you change your rigs ? (+12 hours so you can do this at lunch ?)
I still got my problem which is close to yours I’ve posted link above , dont want to go in full details but basically my rigs become offline everynight and HTTP test fails as curl hive os servers… Strange is cards stay at about 70 % and draw not low power but miner seems not to run. Only manual restart works , watchdog doesnt restart them etc… I tried adding on rig to proxy today but after that it fails to connect to hive os servers and even though it’s mining (everything running fine) it appears offline on hive os page and I cannot control it by any means…
I live in +3 time zone so i change to -4, than it happens in morning 9:30 a.m.
Why you do not want to try to new fresh installation - new USB or SSD?
i will do it as soon as I get physical to my rigs because they are 30 mins by car. I will reinstall them
Did you change the password to the terminal? I noticed that root and user have the same password after installation and you should change them both. I once left a rig with unchanged password and it was silently taken over in under 2h.
There are bots out there that are programmed to try and get in your system if you left default login information and they’re quick about installing rootkits or just their own miner software, which was the case for me.
I started seeing my hashrate go down and load on the system skyrocketing so I went in and started digging, you may find these particular commands useful:
last - Shows you last successful logins to the system and by whom
lastb - Shows you last attempts to login to your system and user
top - Shows you system utilization, however, I prefer atop but it’s a 3rd party install
I found someone logged in as “user” as obviously password wasn’t changed and installed Ravencoin Miner under ~/home/user in dot directory.
If your system’s been compromised and this way for a long time, I would reinstall and make sure you change passwords for “root” and “user” when you login to terminal by doing:
passwd user
passwd root
Hope this helps and good luck, if it always goes down exactly at 2:30am, there maybe a “cron” or “at” jobs somewhere that trigger their software at that time.
1 Like
Same here, same hour, but not always.
Today didn’t.
I think problem is clear
someone is scanning ports and via VNC, shelinabox or others comes inside in add second miner somewhere.
to avoid that i think we must to close all ports from router. disable VNC and Shellina box and change all password.
and if you already have this problem - best solution fresh install Hiveos
1 Like
You said someone is scanning ports. Just at 2:30am (SERVER TIME)? How “someone” know that its 2:30 on the server? We have same symptoms even we change timezones or so.
A few systems with exactly the same settings and spec works with no problems for weeks or even months, but some crashed as soon as you set timezone to get near 2:30am!
99.9% hives scripts or packages problem, but as guys said above HiveOS developers simply don’t care about their customers who pay money! 
I suspect that somehow infect the system injected some script that exact at 2:30a.m. launch other miner which mines to other wallet.
Sorry, but completely reinstalled HiveOS on format drive and did all security before put system online - same story
So can’t be any second party scripts or so.
WOW… really you got the same on fresh install???
For me as I wrote before this helped and still 5 rigs are working without any problems.
one more think - have you any opened port in your network (in your router)? I have closed everything and turned maximum security on it
please also be ware of any other rigs or PCs in the same LAN of your mining rigs, they may have some virus that will infect LAN computers.
1 Like
Hey! You have collected great facts here. Why has this thread got exhausted?
Let us refresh it. Every user can post some interesting information and will share a lot of great things together. It is worth trying I believe. I am from https://worldpostalcode.com/united-states/oregon/portland. And where are you from? Tell something from your culture, it will be interesting.