Re: Idea to secure ssh [was: howto block ssh brute-force]
Neal Murphy said:
> The point is to obscure the ssh server from everyone, including those
> are authorized to access it remotely.
You're right, this is just the old idea of "security by obscurity".
> The point is to reduce brute-forace attacks to the point of nearly total
> ineffectiveness. The point is to require a small amount of
> pre-authentication before the server acknowledges the client's attempt
> to connect.
How small can any _reliable_ authentication protocol be?
Either it's at risk by brute-force or by denial-of-service.
$ rpm -q --whatrequires linux
no package requires linux