Re: POSSIBLE BREAK-IN in auth.log via ssh

To: debian-user@lists.debian.org
Subject: Re: POSSIBLE BREAK-IN in auth.log via ssh
From: Nate Bargmann <n0nb@n0nb.us>
Date: Thu, 12 Feb 2009 06:15:47 -0600
Message-id: <[🔎] 20090212121547.GB13403@n0nb.us>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 499406CC.3090607@cybercolloids.net>
References: <[🔎] 8f0417560902112157r25a05ec6taefd638b6f35018e@mail.gmail.com> <[🔎] 20090212085516.GN8868@wasteland.homelinux.net> <[🔎] 499406CC.3090607@cybercolloids.net>

* Kevin Philp <lists@cybercolloids.net> [2009 Feb 12 05:25 -0600]:

> 6. If its convenient switch to a different port - the brute force  
> attackers just scan blocks of IP addresses at port 22 - if you are using  
> port 22 you are much less likely to be scanned.

Perhaps you meant, "if you are _not_ using port 22 you are much less
likely to be scanned."  Also, not using port 22 may help to get around
your ISP blocking port 22.

- Nate >>

-- 

"The optimist proclaims that we live in the best of all
possible worlds.  The pessimist fears this is true."

Ham radio, Linux, bikes, and more: http://n0nb.us/index.html

Reply to:

References:
- POSSIBLE BREAK-IN in auth.log via ssh
  - From: Norman Bird <steelpulsefan@gmail.com>
- Re: POSSIBLE BREAK-IN in auth.log via ssh
  - From: Jochen Schulz <ml@well-adjusted.de>
- Re: POSSIBLE BREAK-IN in auth.log via ssh
  - From: Kevin Philp <lists@cybercolloids.net>

Prev by Date: Re: converting ms word files
Next by Date: Re: Using a Software Raid array created with newer mdadm
Previous by thread: Re: POSSIBLE BREAK-IN in auth.log via ssh
Next by thread: Strange keyboard lag
Index(es):
- Date
- Thread