Date: Sun, 25 Mar 2001 03:22:13 -0500 From: Peter Radcliffe <pir@pir.net> To: freebsd-stable@freebsd.org Subject: Re: sshd revealing too much stuff. Message-ID: <20010325032213.H255@pir.net> In-Reply-To: <20010325015443.A29255@home.com>; from graywane@home.com on Sun, Mar 25, 2001 at 01:54:43AM -0500 References: <Pine.BSF.4.21.0103232116280.8531-100000@server.highperformance.net> <3ABD9014.E78871BC@duwde.com.br> <20010325015443.A29255@home.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Graywane <graywane@home.com> probably said: > Yes, it is security by obscurity and no, most people thinking about security > on the net do not believe it is an effective technique to secure a site. You > secure a site by: Security by obscurity is a bad thing to _rely_ on, but why make it any easier to get information which is useful ? The less a cracker knows about any system the more work/time it will take for them to break into it. Personally I only allow connections from hosts that need to connect to ssh, so the rest wouldn't see it ... but if I notice this extra info appearing on any of my machines, I'll get rid of it. It would be easier if it wasn't there in the first place. P. -- pir pir@pir.net pir@net.tufts.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010325032213.H255>