On 07/12/10 21:13, bofh wrote:
On Mon, Jul 12, 2010 at 4:41 PM, Leonardo Carneiro - Veltrac
<lscarne...@veltrac.com.br> wrote:
Well, them and anyone who knows how to half-assed run nmap or any other
numerous service fingerprinting utilities.
Even with sshd moved, when I finally decided to block port 22, my
bandwidth use dropped noticeably.
You made the point: bandwidth!
umm... this is *INSIDE* the corporate network. If there's anyone
portscanning my box, I want to know about it, especially since I have
the power to go smack hands.
And if there was someone capable of breaking ssh, that person would
find it no matter what port it's on.
He also did some other brilliant things such as set up a boot up
password, bios password and other assorted "security" things. Guess
what happened? He didn't tell me he did it, and he forgot the
passwords. He got to spend half a day in the data center rebuilding
crap.
And the next week sweeping the floors? :)