21 Oct
2004
21 Oct
'04
10:32 p.m.
A. Pagaltzis wrote:
* Drew Broadley <drew(a)corrupt.co.nz> [2004-10-21 23:06]:
I don't want to be stating something obvious or stupid, but what about running SSH on a high port ? I do that and have VERY little activity.
That *is* a good immediate response, in the way crush zones are: they don't mean you can get away with no seat belt. It is by no means a substitute for real security, just a good way to stave off a first wave of exploits targetting a vulnerable service, that can buy you time to lock it down.
But it's *nothing* *more* *than* *that*.
Regards,
Disclaimer: I am in no way advising to use a higher port INSTEAD of firewall rulesets and filtering. - Drew