From owner-freebsd-security@FreeBSD.ORG  Sat Oct  3 11:26:03 2009
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5773A106568D
	for <freebsd-security@freebsd.org>;
	Sat,  3 Oct 2009 11:26:03 +0000 (UTC) (envelope-from des@des.no)
Received: from tim.des.no (tim.des.no [194.63.250.121])
	by mx1.freebsd.org (Postfix) with ESMTP id 1717F8FC12
	for <freebsd-security@freebsd.org>;
	Sat,  3 Oct 2009 11:26:02 +0000 (UTC)
Received: from ds4.des.no (des.no [84.49.246.2])
	by smtp.des.no (Postfix) with ESMTP id E84596D41B;
	Sat,  3 Oct 2009 11:26:01 +0000 (UTC)
Received: by ds4.des.no (Postfix, from userid 1001)
	id BEA8A84426; Sat,  3 Oct 2009 13:26:01 +0200 (CEST)
From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no>
To: Ian Smith <smithi@nimnet.asn.au>
References: <4AC545C3.9020608@johnea.net>
	<19141.20047.694147.865710@hergotha.csail.mit.edu>
	<4AC61C0B.3050704@johnea.net>
	<20091003042802.O10039@sola.nimnet.asn.au>
Date: Sat, 03 Oct 2009 13:26:01 +0200
In-Reply-To: <20091003042802.O10039@sola.nimnet.asn.au> (Ian Smith's message
	of "Sat, 3 Oct 2009 04:43:08 +1000 (EST)")
Message-ID: <86hbugyb06.fsf@ds4.des.no>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.0.95 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Cc: freebsd-security@freebsd.org, johnea <me@johnea.net>
Subject: Re: openssh concerns
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 03 Oct 2009 11:26:03 -0000

Ian Smith <smithi@nimnet.asn.au> writes:
> http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers provides a=
=20
> reasonably useful list of ports NOT to choose for an obscure ssh port.

In practice, you have no choice but to use someting like 443 or 8080,
because corporate firewalls often block everything but a small number of
ports (usually 20, 22, 80, 443, 8080, and odds are that 20, 80 and 8080
go through a transparent proxy)

DES
--=20
Dag-Erling Sm=C3=B8rgrav - des@des.no