From owner-freebsd-questions@FreeBSD.ORG  Tue Sep 20 00:12:15 2011
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 79E25106567A
	for <freebsd-questions@freebsd.org>;
	Tue, 20 Sep 2011 00:12:15 +0000 (UTC)
	(envelope-from merlyn@stonehenge.com)
Received: from mail.mroute.net (lax-gw09.mailroute.net [199.89.0.109])
	by mx1.freebsd.org (Postfix) with ESMTP id 5E9018FC1C
	for <freebsd-questions@freebsd.org>;
	Tue, 20 Sep 2011 00:12:15 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by lax-gw09.mroute.net (Postfix) with ESMTP id 14DE8328027;
	Tue, 20 Sep 2011 00:12:15 +0000 (GMT)
X-Virus-Scanned: by MailRoute
Received: from red.stonehenge.com (red.stonehenge.com [208.79.95.2])
	by lax-gw09.mroute.net (Postfix) with ESMTP id 4827D1384ED;
	Tue, 20 Sep 2011 00:12:14 +0000 (GMT)
Received: by red.stonehenge.com (Postfix, from userid 1001)
	id 2A5B23FFC; Mon, 19 Sep 2011 17:12:14 -0700 (PDT)
From: merlyn@stonehenge.com (Randal L. Schwartz)
To: Paul Macdonald <paul@ifdnrg.com>
References: <CAAOvGP2Gj0=ZAYZn2KZYUa3NTCHVtUdtQqHumM1D5Ea26dzPrQ@mail.gmail.com>
	<946851316461449@web97.yandex.ru>
	<CAAOvGP3uPgcA2L+3+aLuAkyy3m72L3fxeDbt67gF1iC2xPMitQ@mail.gmail.com>
	<4E77A37A.3090406@ifdnrg.com>
x-mayan-date: Long count = 12.19.18.13.1; tzolkin = 13 Imix; haab = 9 Chen
Date: Mon, 19 Sep 2011 17:12:14 -0700
In-Reply-To: <4E77A37A.3090406@ifdnrg.com> (Paul Macdonald's message of "Mon, 
	19 Sep 2011 21:18:02 +0100")
Message-ID: <86fwjst6ld.fsf@red.stonehenge.com>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.3 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Cc: James Strother <jstrother9109@gmail.com>, freebsd-questions@freebsd.org
Subject: Re: limit number of ssh connections
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Sep 2011 00:12:15 -0000

>>>>> "Paul" == Paul Macdonald <paul@ifdnrg.com> writes:

Paul> in my experience running ssh on a high port cuts the amount of unwanted ssh
Paul> connections to approximately zero, in fact i got a surprise when seeing a sec
Paul> log from a box which i hadn't done this for

I run sshd on 443 (for firewall-bending reasons), and the only
connections I see there are people trying to break into the web.  Never
an actual sshd hit. :)

-- 
Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095
<merlyn@stonehenge.com> <URL:http://www.stonehenge.com/merlyn/>
Smalltalk/Perl/Unix consulting, Technical writing, Comedy, etc. etc.
See http://methodsandmessages.posterous.com/ for Smalltalk discussion