Hacker News new | ask | show | jobs
by rmbyrro 810 days ago
Wait, who's using SSH pass auth?

Folks, private keys. Change your SSH port and use an SSH tarpit on port 22.
2 comments
FergusArgyll 810 days ago
How necessary is it to change ssh ports? You can't really spray/brute force a private key
link
rmbyrro 810 days ago
It's not "necessary", but, when combined with a tarpit on port 22:

1. You can monitor if your private key is compromised and automatically rotate it.

2. It's fun to mess around with hackers and script kidies.

link
twosdai 810 days ago
The tarpit on 22 is amazing. I love looking at all the access logs every fee months and seeing connection attempts that last minutes.
link