20 Jan
2016
20 Jan
'16
5:27 p.m.
I don?t need to be faster than the bear, I just need to be faster than you.
They don?t need or care to be smart enough because it?s not worth the effort for them. :)
I so need to implement key auth only.
-brian
On Jan 20, 2016, at 11:22 AM, Robert Armstrong <bob
at jfcl.com> wrote:
I have about 500 telnet connections per day to
Mim, ...
Put your telnet on a non-standard port. All the bots and scripts are hardwired to
standard port numbers.
I only open ssh, and I use a non-standard port number. I basically never get any break
in attempts. Sure, if somebody did a port scan they could find it, but none of the bots
do that and the human hackers who might be smart enough to figure it out are also smart
enough not to care about my machines.
I also only permit public/private key authentication with external ssh connections, so
trying to guess passwords is a non-starter.
BTW, do you have ssh for RSX too??
Bob