On May 17, 2016, at 7:56 PM, Always Learning <centos at u68.u22.net> wrote: > (1) I would change the port from 22 to something more difficult to > guess, perhaps 49026 (for example) and then block port 22 in the > firewall. If you’re going to change the port, change it to something <1024. You don’t want to have sshd running on a port that a non-root user can bind to. -- Jonathan Billings <billings at negate.org>