Re: Linux malware attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On Fri, Mar 21, 2014 at 4:18 PM,  <m.roth@xxxxxxxxx> wrote:
>>
>> #5 (non-standard port) is very useful.  Not for protecting yourself
>> against attack, but from not having your log files fill up with all of
>> the automated attack scripts.  Which makes it easier to spot the more
>> serious attackers who have taken the time and effort to find your SSH
>> port.
>
> Huh! That's the *only* rationale I've ever heard for security through
> obscurity that actually makes sense. (One of my ongoing "goals" for the
> annual review is cutting down the noise in our logs.)
> <snip>

It's all obscurity even if you think you can call it something else.
OpenVPN over UDP configured to not respond at all unless the
certificates match is even better at being hard to find with random
probes, though.

-- 
  Les Mikesell
    lesmikesell@xxxxxxxxx
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux