Re: [tlug] server installation best practices/ worksheet

[Godwin Stewart <gstewart@example.com>]

On Sat, 26 May 2007 00:18:41 +0900, Patrick Kellaher
<kalmite@example.com> wrote:

> Now number 4 is a good idea to defend against automated attacks, but
> we all know that nmap does a very good job detecting what is running
> on a system.

I run several servers open to the public. All of them have had sshd
listening to a non-standard port ever since I started adminning them,
and that was 3 or 4 years ago. I have yet to see a single attack on
sshd on that non-standard port. So, while nmap can indeed make a good
guess at what service is running on a given port, I see no evidence of
attackers actually using that feature. Maybe it'll come later, I don't
know, but for the time being I have no reason whatoever to run sshd on
port 22 on any of my boxen.

-- 
G. Stewart - gstewart@example.com

Computers are like air conditioners. They stop working properly when
you open Windows

Attachment: pgpdoSnGcNsLS.pgp
Description: PGP signature