Provide SSH to someone w/ dynamic IP address {Scanned}
Mike Vanecek
rh_list at mm-vanecek.cc
Sat Sep 4 04:31:27 UTC 2004
On Sat, 4 Sep 2004 00:18:58 -0400, SW wrote
> Mike,
>
> > How about moving sshd from 22 to another port (85?) that only you and he
> > would know. Then he would ssh to -p 85. Anyone ssh to -p 22 would get a
> > timeout.
>
> Thought about that...but if anyone is port scanning my network they would
> evently find the open port and it's a matter to time.
Run portsentry and block that ip address when it starts a port scan. Hence,
the scan would have to start on exactly the port you pick for it to work. You
probably should be protecting your system anyway.
More information about the redhat-list
mailing list