Don’t change sshd’s port
From Arabesque, my favorite blog for Unix geeks. I always change the sshd port, so I’m delighted to read a sound argument against doing so.
November 21, 2012 at 12:38 pm
“This in turn means that any user can start a process listening on that port, potentially a fake sshd that steals credentials”
If you are using ssh keys (as opposed to passwords) this is not possible.
As he mentions later (for other reasons) you should be using ssh keys only and have password authentication disabled.
Your email address will not be published.
@rc3dotorg is a Twitter feed of new posts.
Of course this blog has an Atom feed.
You can also follow my personal Twitter account. It's @rafeco.
Browse the archives.
© 2018 rc3.org
Theme by Anders Noren — Up ↑