On 26/02/2019 18:05, Andy Pieters wrote: > On Tue, Feb 26, 2019 at 4:02 PM Zorro via arch-general > <arch-general@xxxxxxxxxxxxx> wrote: >> I see this happen on my SSH server. >> >> The journal is full of these failed login attempts. >> Haven't checked from where those login atttempts come from though. >> >> It makes it hard to find something in the journal. > > It's why I keep my SSH servers on a non-standard port. I know it > doesn't prevent someone from discovering it, but it cuts out 99.99% of > all those attacks, being able to filter out connection attempts to > port 22 Same. For easy ports to remember, I like to combine powers of two (e.g. 25664 (256-64) or 25632). Easy to remember and non-standard. -- Juha Kankare
