Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 22 Oct 2011 17:10:44 +0200
From:      "Hasse Hansson" <fbsd@thorshammare.org>
To:        "'Polytropon'" <freebsd@edvax.de>, "'Bruce Cran'" <bruce@cran.org.uk>, "'Michael Powell'" <nightrecon@hotmail.com>
Cc:        freebsd-questions@freebsd.org
Subject:   SV: Breakin attempt
Message-ID:  <000f01cc90cc$c8c0abe0$5a4203a0$@org>
In-Reply-To: <20111022161242.11803f76.freebsd@edvax.de>
References:  <000001cc90c0$a0c16050$e24420f0$@org>	<4EA2CE72.5030202@cran.org.uk> <20111022161242.11803f76.freebsd@edvax.de>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help


-----Oprindelig meddelelse-----
Fra: owner-freebsd-questions@freebsd.org
[mailto:owner-freebsd-questions@freebsd.org] P=E5 vegne af Polytropon
Sendt: den 22 oktober 2011 16:13
Til: Bruce Cran
Cc: freebsd-questions@freebsd.org
Emne: Re: Breakin attempt

On Sat, 22 Oct 2011 15:08:50 +0100, Bruce Cran wrote:
> I suspect that these sorts of attacks are fairly normal if you're=20
> running ssh on the standard port. I used to have lots of 'break-in=20
> attempts' before I moved the ssh server to a different port.

Is there _any_ reason why moving from port 22 to something
different is _not_ a solution?

Reason why I'm asking: Moving SSH away from its default port
seems to be a relatively good solution as break-in attempts
concentrate on default ports. So in case a sysadmin decides
to move SSH to a "hidden" location, what could be an argument
against this decision?




--=20
Polytropon
Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...

Thank you all Polytropon, Matthias, Bruce and Michael for your answers.
No, no reason at all to not change from port 22, and I will follow that
advice.
And my plan is to move away from password based ssh logins in the =
future.
I've been running this server for educational purposes for several =
years,
But this is first time I've had a "Break in attempt" going on for this =
long
time.

It don't bother me more than cluttering up my logfiles, but I got =
curious if
this
Attempt was originating from one person.

All the Best to you all
Hasse


_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to =
"freebsd-questions-unsubscribe@freebsd.org"




Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?000f01cc90cc$c8c0abe0$5a4203a0$>