Re: securing server

To: debian-security@lists.debian.org
Subject: Re: securing server
From: Oliver Antwerpen <antwerpen@netsquare.de>
Date: Wed, 07 May 2008 13:07:57 +0200
Message-id: <[🔎] 20080507122818.6607113A54D7@liszt.debian.org>
In-reply-to: <[🔎] a729f7570805070234x62af4397o93aa28be9f3f70b4@mail.gmail.com>
References: <[🔎] fa218e630805070209x1c5837cbs6b33c32bf3e2b4b9@mail.gmail.com> <[🔎] 20080507091336.GC7706@molly.corsac.net> <[🔎] fa218e630805070230k263fa4dck14ffbfd2d41d9a25@mail.gmail.com> <[🔎] a729f7570805070234x62af4397o93aa28be9f3f70b4@mail.gmail.com>


Steve schrieb:

Le 07-05-2008, à 17:34:08 +0800, Abdul Bijur Vallarkodath (abdulbijur@gmail.com) a écrit :

   just my two pence.


and my two centimes.

   *  Change the ports of most ports like ssh, ftp, smtp, imap etc. from the
   default ones to some other ones.


>From my poor understanding of security related issues, I guess this is
totally useless since any (good) port scanner will defeat this without
any problem. Remember, security by obscurity is a bad idea.

Used solely you are right, but used in addition to usual other securingmechanisms it can help against zero-day attacks, which only shootexploits to well-known ports.

Reply to:

Follow-Ups:
- Re: securing server
  - From: Rich Healey <healey.rich@gmail.com>

References:
- securing server
  - From: "Jean-Paul Lacquement" <zelos414@gmail.com>
- Re: securing server
  - From: Yves-Alexis Perez <corsac@debian.org>
- Re: securing server
  - From: "Jean-Paul Lacquement" <zelos414@gmail.com>
- Re: securing server
  - From: "Abdul Bijur Vallarkodath" <abdulbijur@gmail.com>

Prev by Date: Re: securing server
Next by Date: Re: securing server
Previous by thread: Re: securing server
Next by thread: Re: securing server
Index(es):
- Date
- Thread