2009/7/22 Nathan Eisenberg <[email protected]>: > I do feel that changing the port may not truly constitute an increase in > security. It makes you less visible, perhaps. But this particular firewall > is already subjected to port scans across the entire range, including > highports (it has some very high traffic web sites behind it), so the > alternate port would be detected relatively quickly anyways. > > Thank You, > Nathan Eisenberg > Sr. Systems Administrator > Atlas Networks, LLC > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > > Commercial support available - https://portal.pfsense.org > >
in such cases i use also snort with oinkmaster-rulesets there could detecting also portscans and bans such IP's for a while completely from your Firewall and your net. This prevents also other services like ftp. Our ftp-Service is also getting often compromised by Crackers w/ brute-force-attacks... regards michael -- = = = m i c h a e l - s c h u h . n e t = = = Projektmanagement - IT-Consulting - Professional Services IT Michael Schuh Postfach 10 21 52 66021 Saarbrücken phone: 0681/8319664 mobil: 0175/5616453 @: m i c h a e l . s c h u h @ g m a i l . c o m = = = Ust-ID: DE251072318 = = = --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected] Commercial support available - https://portal.pfsense.org
