On Wed, 26 Jun 2002, WE HATE SPAM wrote: > The idea being, how can I make lshd a less tempting target? If a > attacker knows that host X is running lshd on 22, how can I make > that a less tempting target.
If you are concerned mostly with preventing the hordes of script-kiddies in the world from banging on your lshd with their automated attack tools, then there's a very simple countermeasure you can take: make lshd listen on some port other than 22. Note that the *only* defense this security-through-obscurity buys you is invisibility to the hordes of script kiddies in the world. Any attacker who targets your site, LAN, or host will find your lshd, no matter what port you have it listening on. -- James Ralston, Information Technology Software Engineering Institute Carnegie Mellon University, Pittsburgh, PA, USA
