Dio9sys@lemmy.blahaj.zone to Asklemmy · 11 months agoLemmy, what are some of your "oh shit" work stories?message-squaremessage-square169fedilinkarrow-up1209arrow-down14
arrow-up1205arrow-down1message-squareLemmy, what are some of your "oh shit" work stories?Dio9sys@lemmy.blahaj.zone to Asklemmy · 11 months agomessage-square169fedilink
minus-squaredan@upvote.aulinkfedilinkarrow-up7·11 months agoChanging the port isn’t really much obfuscation though. It doesn’t take long to scan all ports for the entire IPv4 range (see masscan)
minus-squarelud@lemm.eelinkfedilinkarrow-up8arrow-down2·11 months agoIt helps against stupid automated attacks though. If someone has changed the port it’s likely that they have set up a great password or disabled password auth all together. It’s worth it for just having cleaner logs and fewer attempts.
minus-squaredan@upvote.aulinkfedilinkarrow-up3·11 months ago It’s worth it for just having cleaner logs Those logs are useful to know which IPs to permanently block :)
Changing the port isn’t really much obfuscation though. It doesn’t take long to scan all ports for the entire IPv4 range (see masscan)
It helps against stupid automated attacks though.
If someone has changed the port it’s likely that they have set up a great password or disabled password auth all together.
It’s worth it for just having cleaner logs and fewer attempts.
Those logs are useful to know which IPs to permanently block :)