Dio9sys@lemmy.blahaj.zone to Asklemmy@lemmy.ml · 1 year agoLemmy, what are some of your "oh shit" work stories?message-squaremessage-square162fedilinkarrow-up1201arrow-down14
arrow-up1197arrow-down1message-squareLemmy, what are some of your "oh shit" work stories?Dio9sys@lemmy.blahaj.zone to Asklemmy@lemmy.ml · 1 year agomessage-square162fedilink
minus-squaredan@upvote.aulinkfedilinkarrow-up7·1 year agoChanging the port isn’t really much obfuscation though. It doesn’t take long to scan all ports for the entire IPv4 range (see masscan)
minus-squarelud@lemm.eelinkfedilinkarrow-up7arrow-down2·1 year agoIt helps against stupid automated attacks though. If someone has changed the port it’s likely that they have set up a great password or disabled password auth all together. It’s worth it for just having cleaner logs and fewer attempts.
minus-squaredan@upvote.aulinkfedilinkarrow-up3·1 year ago It’s worth it for just having cleaner logs Those logs are useful to know which IPs to permanently block :)
Changing the port isn’t really much obfuscation though. It doesn’t take long to scan all ports for the entire IPv4 range (see masscan)
It helps against stupid automated attacks though.
If someone has changed the port it’s likely that they have set up a great password or disabled password auth all together.
It’s worth it for just having cleaner logs and fewer attempts.
Those logs are useful to know which IPs to permanently block :)