Post 1187124 by ewings@micro.eternawings.com
 (DIR) More posts by ewings@micro.eternawings.com
 (DIR) Post #1187123 by niconiconi@cybre.space
       2018-11-12T05:56:41Z
       
       0 likes, 0 repeats
       
       ProTip: DO NOT run OpenSSH on port 2222 just for hoping to stop bots from discovering and cracking your server. Any unprivileged process can listen on port > 1024. And the middleboxes on the network may deprioritize your traffic. Use just a strong password and the bots are safe to ignore. Or use public key, and disable password altogether.
       
 (DIR) Post #1187124 by ewings@micro.eternawings.com
       2018-11-12T07:35:51Z
       
       0 likes, 0 repeats
       
       @niconiconi But if someone can put something unwanted onto your server, isn't that a larger problem?
       
 (DIR) Post #1187125 by niconiconi@cybre.space
       2018-11-12T07:38:37Z
       
       0 likes, 0 repeats
       
       @ewings The principle of defense-in-depth is always assuming the entire system will be eventually compromised, starts from the easiest target. If a process starts to listen on a port you don't want to, this is a serious problem, but we still use firewalls.