Once upon a time, James Hogarth <james.hogarth@xxxxxxxxx> said: > If you really want to SSH to a port other than 22 for a little obscurity > use an iptables dnat to map the high port to local host 22 and block 22 > from external connections. Yeah, the old "move stuff to alternate ports" thing is largely a waste of time and just makes it more difficult for legitimate use. With large bot networks and tools like zmap, finding services on alternate ports is not that hard for the "bad guys". -- Chris Adams <linux@xxxxxxxxxxx> _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Securing SSH wiki article outdated
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Securing SSH wiki article outdated
- From: Chris Adams <linux@xxxxxxxxxxx>
- Date: Fri, 13 Feb 2015 08:15:06 -0600
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <CAGkb5vcE411z_O8p1WDUccT5MagPzDuXF4HdfRm4j6eFQUODNQ@mail.gmail.com>
- Mail-followup-to: centos@xxxxxxxxxx
- User-agent: Mutt/1.5.20 (2009-12-10)
- Follow-Ups:
- Re: Securing SSH wiki article outdated
- From: Lamar Owen
- Re: Securing SSH wiki article outdated
- References:
- Securing SSH wiki article outdated
- From: Warren Young
- Re: Securing SSH wiki article outdated
- From: Ned Slider
- Re: Securing SSH wiki article outdated
- From: James Hogarth
- Securing SSH wiki article outdated
- Prev by Date: Re: Securing SSH wiki article outdated
- Next by Date: Re: Securing SSH wiki article outdated
- Previous by thread: Re: Securing SSH wiki article outdated
- Next by thread: Re: Securing SSH wiki article outdated
- Index(es):
 |