|
|
10.4: Change the default sshd port
This writeup is interesting BUT....
10.4: Change the default sshd port
Running ssh on a different port though will stop the ENDLESS ssh scans that seem to blight the internet these days from pounding your Mac.
10.4: Change the default sshd port
I agree, changing port numbers is not a security measure. However, it can be useful in a number of situations. For example: traffic on port 22 may be blocked or considered suspicious by ISPs or a workplace thus choosing a different port (such as 443) can be a great alternative.
10.4: Change the default sshd port
Not to disagree for the sake of disagreeing, but changing the ssh port is definitely a security measure, for the reason Josh mentions. Those ssh bots hammer port 22 on any server running ssh on the default port, to the point that they can overwhelm DirectoryServices, creating a DOS attack. If the scans are successful in guessing a password, your system is hacked. By changing the ssh port, you remove the server's exposure to these bots--so yes, it is a security measure.
10.4: Change the default sshd port
Perhaps, but the point of this really isn't for added security so much as obsfucation. I have passwords disabled, rely solely on keys, and have my account as the only one allowed to ssh and only from set machines. I'm not worried about someone getting in. But I do want to stop the endless script kiddie attacks as each attempt to log in spawns a new SSHD service. Watching the traffic hit port 22, I can see sometimes dozens of SSHD processes running. |
SearchFrom our Sponsor...Latest Mountain Lion HintsWhat's New:HintsNo new hintsComments last 2 daysLinks last 2 weeksNo recent new linksWhat's New in the Forums?
Hints by TopicNews from Macworld
From Our Sponsors |
|
Copyright © 2014 IDG Consumer & SMB (Privacy Policy) Contact Us All trademarks and copyrights on this page are owned by their respective owners. |
Visit other IDG sites: |
|
|
|
Created this page in 0.05 seconds |
|