On Sunday 15 Jan 2012 14:19:07 Tanstaafl wrote: > On 2012-01-15 3:50 AM, Pandu Poluan <pa...@poluan.info> wrote: > > Well, I *always* change my sshd ports, not for added security, but > > because I'm tired of seeing failed login attempts from China. The daily > > log became *much* shorter after I moved the port somewhere else. > > That is the *only* legitimate reason (I can think of) to change the > port... but it always irks me when someone thinks they are truly gaining > any extra *security* through doing so...
They are ... not at all in terms of complexity (the difficulty of cracking the ssh password remains exactly the same), but yes in terms of probability (fewer attempts to crack the password). Of course, using public keys instead of passwords improves difficulty by orders of magnitude, but for the sake of reducing bandwidth alone, I think that changing the sshd port makes sense. -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.
