Ben Ricker wrote: > > I have a dilemma. I want to open the SSH port to the world and I need > some information about the secuirty of SSH. it should be fine. for most machines exposed to the internet all i have is SSH. most of them also require key login, so even if you know all my passwords..you still need my keys to get in :) if your really paranoid use a firewall instead of tcp wrappers i run my systems as if tcp wrappers didn't even exist, if there is a service on the machine that I want isolated it'll be firewalled or won't run at all. that and you can run SSH on a really high port to keep out of the prying eyes of port scanners. most port scans ive seen don't take the time to scan all 65536 ports on a system as it would take far too long. that should keep out a good 99.999999999999999999999999999999% of the people that may try to gain access. which is good enough for me. any more security and i might as well yank the power cord :) nate -- Nate Amsden System Administrator GraphOn http://www.graphon.com
