[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Idea to secure ssh [was: howto block ssh brute-force]

Neal Murphy said:
> The point is to obscure the ssh server from everyone, including those
> are authorized to access it remotely.

You're right, this is just the old idea of "security by obscurity".

> The point is to reduce brute-forace attacks to the point of nearly total
> ineffectiveness. The point is to require a small amount of
> pre-authentication before the server acknowledges the client's attempt
> to connect.

How small can any _reliable_ authentication protocol be?
Either it's at risk by brute-force or by denial-of-service.


$ rpm -q --whatrequires linux
no package requires linux

Reply to: