Mailinglist Archive: opensuse (770 mails)

< Previous Next >
[opensuse] Re: Router firewall vs openSUSE firewall
  • From: Joachim Schrod <jschrod@xxxxxxx>
  • Date: Tue, 28 Aug 2012 20:24:09 +0200
  • Message-id: <k1j2ca$v4b$1@ger.gmane.org>
James Knott wrote:
Bob Williams wrote:
Some time ago I looked at /var/log/messages and was amazed to see
someone was running a script to try and get through port 22. Of
course,
sshd rejected every attempt, but it prompted me to move ssh to a
different port.

Changing port numbers doesn't buy you a lot of security.

It makes firewall logs manageable again, and that adds a lot of
security. I can now better see low-speed attacks (one try every few
minutes, using real user ids from the system) which were hidden before.

On the
other hand, using public/private keys provides much more security
than passwords.

That's a given and independent. Nevertheless I want to know about
low-speed attacks as mentioned above. It means that somebody starts
to get more serious about break-in attempts.

Joachim

--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Joachim Schrod, Roedermark, Germany
Email: jschrod@xxxxxxx

--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >