Dio9sys to Asklemmy@lemmy.ml · 1 年前Lemmy, what are some of your "oh shit" work stories?message-squaremessage-square159fedilinkarrow-up1204
arrow-up1204message-squareLemmy, what are some of your "oh shit" work stories?Dio9sys to Asklemmy@lemmy.ml · 1 年前message-square159fedilink
minus-squaredan@upvote.aulinkfedilinkarrow-up7·1 年前Changing the port isn’t really much obfuscation though. It doesn’t take long to scan all ports for the entire IPv4 range (see masscan)
minus-squarelud@lemm.eelinkfedilinkarrow-up7·1 年前It helps against stupid automated attacks though. If someone has changed the port it’s likely that they have set up a great password or disabled password auth all together. It’s worth it for just having cleaner logs and fewer attempts.
minus-squaredan@upvote.aulinkfedilinkarrow-up3·1 年前 It’s worth it for just having cleaner logs Those logs are useful to know which IPs to permanently block :)
Changing the port isn’t really much obfuscation though. It doesn’t take long to scan all ports for the entire IPv4 range (see masscan)
It helps against stupid automated attacks though.
If someone has changed the port it’s likely that they have set up a great password or disabled password auth all together.
It’s worth it for just having cleaner logs and fewer attempts.
Those logs are useful to know which IPs to permanently block :)