Mailinglist Archive: opensuse-security (138 mails)

< Previous Next >
Re: SPAM: Re: [suse-security] Openssh + security
  • From: Scott Leighton <helphand@xxxxxxxxxxx>
  • Date: Sun, 11 Dec 2005 15:46:12 -0800
  • Message-id: <200512111546.12896.helphand@xxxxxxxxxxx>
On Sunday 11 December 2005 3:27 pm, Jaime Santos wrote:
> Hi again,
>
> If someone is using a script to probe port 22 of random machines,
> probably it does make sense to attach the ssh server
> to some other port. But your users will have to be warned that they have
> to explicitly name such a port when trying to
> login remotely. Furthermore, a nmap search for open ports can always
> reveal the services which are available, but this
> is a directed attack. Given the nuisance (such strategy is essentially
> security via obscurity), I think it isn't worth doing it.
>

Yes, the script kiddies are a nuisance. I use login_sentry to send
them on their way (it adds their IP address to hosts.deny).

http://www.lumiere.net/~j/login_sentry/

Scott

--
POPFile, the OpenSource EMail Classifier http://popfile.sourceforge.net/
Linux 2.6.11.4-21.9-default x86_64
SuSE Linux 9.3 (x86-64)

< Previous Next >