11 Aug
2010
11 Aug
'10
9:43 a.m.
2010/8/11 John Doe jdmls@yahoo.com:
From: Whit Blauvelt whit@transpect.com
On Tue, Aug 10, 2010 at 07:12:59PM -0400, Bob Hoffman wrote:
I have a server sitting right on the net and the constant barrage of 100s
of
Ips trying thousands of times at port 22 is insane.
You're quite sane. Anyone likely to hit your ssh at its new port is likely to try port 22 first. So if they show up there first, blocking them is good
- unless you have legitimate users who may forget to go to your special port
and so get locked out after trying the default port first.
There's also port knocking...
how about enabling ssh login only with public keys ?
-- Eero, RHCE