Date: Mon, 24 Jan 2005 23:16:00 +0200 From: Colin Alston <karnaugh@karnaugh.za.net> To: Hexren <me@hexren.net> Cc: freebsd-questions@freebsd.org Subject: Re: sshd port number ? Message-ID: <41F56590.1070303@karnaugh.za.net> In-Reply-To: <12318458361.20050124221023@hexren.net> References: <20050124210109.GA14171@SDF.LONESTAR.ORG> <12318458361.20050124221023@hexren.net>
next in thread | previous in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format. --------------020304070008000700090406 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Hexren wrote: >> How does that make sshd less secure if its on a port above >> 1024 ? >If ssh ever goes down, a user could start his own compromised >version of ssh and do some nasty stuff. The same user could not do >that if the connecting side would expect sshd to be on a privileged >port because the system ensures that only procs running with superuser >privileges can bind to a privileged port. > > And to note, ports <1024 are what we reffer to as "privileged ports", ie - only root, or processes running as root, can open/close/mess them. -- Colin Alston <karnaugh@karnaugh.za.net> About the use of language: "It is impossible to sharpen a pencil with a blunt axe. It is equally vain to try to do it with ten blunt axes instead." -- E.W.Dijkstra, 18th June 1975. (Perl did not exist at the time.) --------------020304070008000700090406--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?41F56590.1070303>