Post AnGB3PmSuRUXOBZLBg by vhns@yuga.surf
 (DIR) More posts by vhns@yuga.surf
 (DIR) Post #AnGB3MsNhzRQNfJWUa by abcdw@fosstodon.org
       2024-10-22T07:12:16Z
       
       0 likes, 0 repeats
       
       Do you use ssh on standard or non-standard port?I deployed two machines with sshd on 22 port and already a bit tired of bots knocking into it.#ssh #Linux #bsd #freebsd #openbsd #gnu
       
 (DIR) Post #AnGB3OF6czDGcQxBYG by tfb@functional.cafe
       2024-10-22T07:15:05Z
       
       0 likes, 0 repeats
       
       @abcdw I use port 22 with password login disabled and fail2ban, and that keeps the amount of knocks down pretty low. I do keep thinking about moving it to some odd high port though
       
 (DIR) Post #AnGB3P7LNKb9KeKV5k by abcdw@fosstodon.org
       2024-10-22T07:22:24Z
       
       0 likes, 0 repeats
       
       @tfb on my personal VPSes I use non-standard port and have it written in my ssh config, so I just type ssh hostname and it works, but I didn't thought about best ssh practices for years. Curious, what is a good way to deal with it nowadays.
       
 (DIR) Post #AnGB3PmSuRUXOBZLBg by vhns@yuga.surf
       2024-10-22T09:14:56.923133Z
       
       0 likes, 0 repeats
       
       @abcdw @tfb the "proper" approach is to not expose ssh publically nor any other service that doesn't need to. Keep all of them behind a VPN.