I don't whitelist IPs for ssh anymore, but I always run sshd on randomly selecte... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		t0mk 15 days ago \| parent \| context \| favorite \| on: I got hacked: My Hetzner server started mining Mon... I don't whitelist IPs for ssh anymore, but I always run sshd on randomly selected port, in order to not get noticed by port scanners. I do it for a really long time already, and until now I am not sure if it has any benefit or it's just umbrella in a sideways storm.

lordnacho 15 days ago | [–]

As long as you understand it's security by obscurity, rather than by cryptography.

I don't think it's wrong, it's just not the same as eg using a yubikey.

forbiddenlake 15 days ago | [–]

This won't hide you completely, but it will reduce log spam.

My sshd only listens on the VPN interface

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact