Hacker News new | past | comments | ask | show | jobs | submit login
Predictably randomizing SSH server port using 2FA TOTP (github.com)
3 points by mkroman 1 day ago | hide | past | web | favorite | 2 comments





… And please don't ignore the description: “this is a bad idea, don't really use this please”

I think I'm going to ignore that advice, as least for experimental purposes.

On my servers, I keep a single ssh port open to the internet. It's as secure as possible, but for a little extra good sauce, I also run it on a nonstandard port to help evade port scanners. This sounds like an improvement on that.

Don't worry, though, I would never consider this an effective security measure. Just another layer on top of the others.




Applications are open for YC Summer 2020

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact

Search: