nanog mailing list archives
Re: a record?
From: Matthew Sullivan <matthew () sorbs net>
Date: Tue, 15 Nov 2005 17:46:26 +1100
william(at)elan.net wrote:
Been doing it this way for some time - 'tis amusing to see them try. It also has the side effect of those that scan for open ports when they find ssh not open tend not to scan for another SSH.On Tue, 15 Nov 2005, Peter Dambier wrote:Moving sshd from port 22 to port 137, 138 or 139. Nasty eh?Or run two daemons. One on port 22 does not allow ANY logins at all but just tracks incoming connections and attempts (and possibly allows toblock-list them in real time - typically not worth the effort though) and another one on some higher port of your choice that is a real sshd daemon for login into your system.
/ Mat
Current thread:
- Re: a record?, (continued)
- Re: a record? Jeroen Massar (Nov 14)
- Re: a record? Gadi Evron (Nov 14)
- Re: a record? Steven M. Bellovin (Nov 14)
- Re: a record? Kevin Loch (Nov 14)
- Re: a record? Rob Thomas (Nov 14)
- Re: a record? Randy Bush (Nov 14)
- Re: a record? Dan Hollis (Nov 14)
- Re: a record? william(at)elan.net (Nov 14)
- Re: a record? Matthew Sullivan (Nov 14)
- Re: a record? Frank Louwers (Nov 15)
- Re: a record? John Levine (Nov 15)
- Re: a record? Matthew Sullivan (Nov 18)
- Re: a record? Eric Rescorla (Nov 18)
- Re: a record? Patrick W. Gilmore (Nov 15)
- Re: a record? Alexei Roudnev (Nov 19)
- Re: a record? Austin McKinley (Nov 19)
- Re: a record? Suresh Ramasubramanian (Nov 19)
- Re: a record? Alexei Roudnev (Nov 19)