On Jan 12, 2012 8:07 PM, "Alan McKinnon" <alan.mckin...@gmail.com> wrote: >
----, >8 snip > > Changing the ssh port (and even crypto keys on DVDs) is just a > brain-dead approach, we agree on that. We rightfully rip a new one to > people advocating doing this. > Well, I *always* change my sshd ports, not for added security, but because I'm tired of seeing failed login attempts from China. The daily log became *much* shorter after I moved the port somewhere else. Plus, thanks to the wonders of iptables and ipset, anyone attempting to connect to port 22 will now gets blocked completely. Rgds,