> I only want to offer ssh to the outside world (lan and
> wan) on port 22 while still being able to run sshd at
> non-root privs.
> Say port 2222 for non-root reasons but port 2222 must
> not interfere and best not be visible to the outside
> world.
You could use a loopback alias with some unused private IP,
say something like
ifconfig lo:0 192.168.15.1 netmask 255.255.255.255
That entire address, not just one port, is invisible to the
outside world (unless you deliberately tell them about it).
--
Dick St.Peters, stpeters@xxxxxxxxxxxxx
