On 26/02/2019 18:05, Andy Pieters wrote:
On Tue, Feb 26, 2019 at 4:02 PM Zorro via arch-general email@example.com wrote:
I see this happen on my SSH server.
The journal is full of these failed login attempts. Haven't checked from where those login atttempts come from though.
It makes it hard to find something in the journal.
It's why I keep my SSH servers on a non-standard port. I know it doesn't prevent someone from discovering it, but it cuts out 99.99% of all those attacks, being able to filter out connection attempts to port 22
Same. For easy ports to remember, I like to combine powers of two (e.g. 25664 (256-64) or 25632). Easy to remember and non-standard.