Daniel Roethlisberger wrote:
> If your situation allows running pf, then there's an alternative
> method: bind sshd normally to port 22, but use pf to deny direct
> connections to port 22, redirecting connections to some high port
> X to port 22 using a `rdr pass' rule. You can even make
> e
Robert Watson 2009-10-11:
> On Thu, 8 Oct 2009, Oliver Fromme wrote:
> >Are you sure? The majority of BSD machines in my vicinity
> >have multiple accounts.
> >
> >And even if there's only one account, there is no reason to be
> >careless with potential port-takeover risks.
> >
> >Therefore I adv
On Thu, 8 Oct 2009, Oliver Fromme wrote:
Are you sure? The majority of BSD machines in my vicinity have multiple
accounts.
And even if there's only one account, there is no reason to be careless with
potential port-takeover risks.
Therefore I advise against running critical daemons on unp
Quoting Doug Barton :
Oliver Fromme wrote:
There are shell machines with lots of user accounts, none
of which have administrative control of the system.
Sure there are, but they make up only a tiny fraction of the systems
on the network today.
wow
Doug
--
Improve the effective
Doug Barton wrote:
> Oliver Fromme wrote:
> > There are shell machines with lots of user accounts, none
> > of which have administrative control of the system.
>
> Sure there are, but they make up only a tiny fraction of the systems
> on the network today.
Are you sure? The majority of BSD
On Fri, Oct 9, 2009 at 12:22 AM, Doug Barton wrote:
> Oliver Fromme wrote:
>> There are shell machines with lots of user accounts, none
>> of which have administrative control of the system.
>
> Sure there are, but they make up only a tiny fraction of the systems
> on the network today.
>
>
share
Oliver Fromme wrote:
> There are shell machines with lots of user accounts, none
> of which have administrative control of the system.
Sure there are, but they make up only a tiny fraction of the systems
on the network today.
Doug
--
Improve the effectiveness of your Internet presence
> Doug Barton wrote:
> > Daniel Bond wrote:
> > > However, I'm concerned about the suggestion of using an
> > > unprivileged port
> >
> > Please explain your reasoning, and how it's relevant in a world where
> > the vast majority of Internet users have complete administrative
> > control o
Hi.
I explained my opinion quite well (imo) a bit further down in my
previous email. I'm not sure what
to answer.
I don't necessarily think it's relevant for every computer running
sshd. I see a tendency to change
sshd port to 2022 and other port numbers. I'm not sure everyone doing
it is
