Hacker News new | past | comments | ask | show | jobs | submit login

I don't think I advocated changing the port as higher priority than more important measures.



If you rely on logging as a “high priority” in your security architecture, then it follows that reducing noise is of parallel importance.

Personally, this is why I change SSH ports every time on a public service and add extra firewall rules if possible. If for some reason I want to watch port 22 “attacks”, I can do so.

I’m not even sure I place this in the security OR obscurity categories at this point ... more of a disk hygiene issue.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: