Date: Wed, 30 Dec 2009 20:43:32 +1100 From: Edwin Groothuis <edwin@mavetju.org> To: "Brian W." <brian@brianwhalen.net> Cc: freebsd-stable@freebsd.org Subject: Re: Hacked - FreeBSD 7.1-Release Message-ID: <20091230094332.GB2409@mavetju.org> In-Reply-To: <4B3A2A02.1090509@brianwhalen.net> References: <bd52e0bd614fbaffcf8c9ff9da35286e@mail.isot.com> <4B20B509.4050501@yahoo.it> <600C0C33850FFE49B76BDD81AED4D25801371D8056@IMCMBX3.MITRE.ORG> <ce92ed41260c438977298c2cf9dd1e3f.HRCIM@webmail.1command.com> <600C0C33850FFE49B76BDD81AED4D25801371D8737@IMCMBX3.MITRE.ORG> <20091229114536.GA2409@mavetju.org> <4B3A2A02.1090509@brianwhalen.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Dec 29, 2009 at 08:10:42AM -0800, Brian W. wrote: > On 12/29/2009 3:45 AM, Edwin Groothuis wrote: > >mpt to pass a Turing test or something. > > > >On all systems which need to be accessible from the public Internet: > >Run sshd on port 22 and port 8022. Block incoming traffic on port > >22 on your firewall. > > > >Everybody coming from the outside world needs to know it is running > >on port 8022. Everybody coming from the inside world has access as > >normal. > > > >Edwin > > > I seem to recall on one of the openbsd lists someone speaking of risks > of running sshd or other services on high numbered ports, presumably > because a non root user cannot bind ports up to 1024. More than happy to suggest 222 next time :-) Edwin -- Edwin Groothuis Website: http://www.mavetju.org/ edwin@mavetju.org Weblog: http://www.mavetju.org/weblog/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20091230094332.GB2409>