rc3.org

Strong opinions, weakly held

Don’t change sshd’s port

Don’t change sshd’s port

From Arabesque, my favorite blog for Unix geeks. I always change the sshd port, so I’m delighted to read a sound argument against doing so.

1 Comment

  1. “This in turn means that any user can start a process listening on that port, potentially a fake sshd that steals credentials”

    If you are using ssh keys (as opposed to passwords) this is not possible.

    As he mentions later (for other reasons) you should be using ssh keys only and have password authentication disabled.

Leave a Reply

Your email address will not be published.

*

© 2024 rc3.org

Theme by Anders NorenUp ↑