<p>On Dec 23, 2010 3:30 PM, "Michael H. Warfield" <<a href="mailto:mhw@wittsend.com">mhw@wittsend.com</a>> wrote:<br>
> Port knocking, moving the port, and all that other noise is just<br>
> avoiding really dealing with the security of your setup. If you are</p>
<p>Indeed. I have tried at points long ago in the past to move the port to hide it. It never works. Someone always comes along and does a portscan, sees that OpenSSH is running on a non-standard port, and goes off with it.</p>
<p>I do block IPs that fail repeatedly, but only to reduce output to the log files and reduce bandwidth usage in the upstream direction, as my clients network resources are quite thin.</p>
<p>--<br>
Sent from my G2 running CyanogenMod!<br>
That is, a phone. :)<br>
</p>