Downside being IPv6 support
On 8/31/08, Gareth 'bigbro' Eason <bigbro at skynet.ie> wrote:
> John Kinsella wrote:
>> Security through obscurity is a good start (SSH Port # = 22 1/2) :-)
>> The problem has "gone away".. for now.
>>>> Thanks to all who replied,
> [snip]
>> One thing to be aware of (for every silver lining has its cloud ;-) )
> is that many firewall configurations allow port 22 through, since it's a
> well known port for SSH - a highly used service. If you use a non
> default port, you also run the risk of your traffic being blocked by an
> over-zealous firewall despite the firewall admin's best efforts to allow
> SSH through.
>> fail2ban is one of the many excellent methods of leaving SSH running on
> its default port, but cutting down on the amount of log spam due to
> brute force attacks.
>> Hope that helps.
>> Best regards,
> -->Gar
>> --
> Irish Linux Users' Group mailing list
> About this list : http://mail.linux.ie/mailman/listinfo/ilug> Who we are : http://www.linux.ie/> Where we are : http://www.linux.ie/map/>
--
Sent from Gmail for mobile | mobile.google.com
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
