Mailinglist Archive: opensuse-security (138 mails)

< Previous Next >
SPAM: Re: [suse-security] Openssh + security
  • From: Jaime Santos <jesantos@xxxxxxxxxxxxxxxxxxxx>
  • Date: Mon, 12 Dec 2005 00:27:52 +0100
  • Message-id: <439CB5F8.8050302@xxxxxxxxxxxxxxxxxxxx>
Hi again,

If someone is using a script to probe port 22 of random machines,
probably it does make sense to attach the ssh server
to some other port. But your users will have to be warned that they have
to explicitly name such a port when trying to
login remotely. Furthermore, a nmap search for open ports can always
reveal the services which are available, but this
is a directed attack. Given the nuisance (such strategy is essentially
security via obscurity), I think it isn't worth doing it.

Best, Jaime.
< Previous Next >