"Malicious startup scripts were found on your system"

[ed.j]

When I run the Security Advisor, this is the only thing that pops up, and as Medium severity.

Problem is, I can't work out how to see what this is referring to so I have no idea what to do.

Any pointers please?

 

[ed.j]

I just noticed this again.

Is this anything I should worry about? I think it's something to do with VPN server but I don't know how to verify that or troubleshoot.

Google says maybe something to do with OpenVPN in docker. I don't do that, I only have OpenVPN running in VPN server. In docker I just have BubbleUPnP Server running.

 

[Rusty]

tun.sh (check it via a text editor) is usually a script that is needed to start up vpn adapters. In most cases this is needed on DSM 7 system for certain docker VPN solutions (wireguard or openvpn).

Maybe something that you have used in the past?

 

[Micky]

OTH, good to know that Synology tries to detect such code...

 

[ed.j]

tun.sh (check it via a text editor) is usually a script that is needed to start up vpn adapters. In most cases this is needed on DSM 7 system for certain docker VPN solutions (wireguard or openvpn).

need to work out how to do that, then i will check - thanks.

Maybe something that you have used in the past?

don't think i've tried it in the past - but can't remember for sure!
bubbleupnp server has some external capabilities, even though i don't use them, so it's possible that's the cause.