On Sat, 19 Nov 2005, Alexei Roudnev wrote:
> Security by obscurity eliminates all (100%) of this automated scans and
> automated attacks. So, having SSH on port 63023 (for example) and seen
> probes, you can be 100% sure that someone have SPECIFIC interest in your
This is just security by outrun
On 11/20/05, Alexei Roudnev <[EMAIL PROTECTED]> wrote:
> Of course, this is only SIGN. Add good fence, rifle etc (castle, water
> channel, draw bridge, knights -:)) if you have something which bad guys are
> interested in. But post NO TRESPASSIGN first of all.
When you put it that way, fair enoug
Security by obscurity eliminates all (100%) of this automated scans and
automated attacks. So, having SSH on port 63023 (for example) and seen
probes, you can be 100% sure that someone have SPECIFIC interest in your
site, and so you can spend time and investigate, what he is looking for (by,
for
Oh - I forgot the other advantage of doing this.
When you aggregate all .forward email out through a single box, stuff
that's slipping through your filters starts to stick out like a sore
thumb when you analyze the mail queues on that box, so you can tune
your inbound filters better. Quite a use
On 11/20/05, Mark Costlow <[EMAIL PROTECTED]> wrote:
>
> Someone might look at the ticket Monday. Meanwhile, I've got thousands of
> queued messages frrom users that are upset with ME because I can't get
> their mail to AOL.
>
AOL's whitelist + feedback loop is not really a whitelist
If the num
On 11/20/05, Alexei Roudnev <[EMAIL PROTECTED]> wrote:
> Other approach exists as well - SecureID on firewall. Login to firewall,
> authenticate, and have dynamic access list which opens ssh for you (and
> still keep ssh on port != 22).
Or VPN in, or set up a tunnel of some sort. Have ssh availa
Or OpenBSD with pf and authpf:
http://www.openbsd.org/faq/pf/authpf.html
Austin
Alexei Roudnev wrote:
I said many times - just use non standard port. Number of hackerts who
discover this port wil decrease approx 10,000 times, to
almost 0 (number).
(Of course, except if you are a bank).
Oth
I said many times - just use non standard port. Number of hackerts who
discover this port wil decrease approx 10,000 times, to
almost 0 (number).
(Of course, except if you are a bank).
Other approach exists as well - SecureID on firewall. Login to firewall,
authenticate, and have dynamic access
