On Thu, 9 Mar 2023 13:13:40 +0100 "Peter N. M. Hansteen" <pe...@bsdly.net> wrote:
> Further to the "why would you want to?" issue, I offer this from the > Hail Mary Cloud cycle: > https://bsdly.blogspot.com/2013/02/theres-no-protection-in-high-ports.html About the only benefit is that having a non-standard port number for SSH/SFTP is that the noise generated by the script kiddies banging on port 22 and not trying other port numbers is reduced. It most definitely does not make anything more secure as a port scan will soon tell an attacker where to try next. It'll stop the most brain-dead of script kiddies, but have little effect with an attacker that has half a working braincell and a copy of `nmap` handy. The latter group is smaller than the former, but is still very large, so the amount of noise reduced will vary. -- Stuart Longland (aka Redhatter, VK4MSL) I haven't lost my mind... ...it's backed up on a tape somewhere.
