Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

>Sure as hell though, if I move ssh off of port 22 then the number of folk trying to guess passwords drops to zero, instantly.

But not for very long. But it doesn't matter, but for log annoyances.



I’ve found dictionary attacks against non-22 ssh to be effectively zero. Maybe once in awhile you get a port scan and a poke or two, but anyone able to move ssh off of 22 is not likely to have the password “p4ssw0rd”


It's a bit like the bit with the fake tan in Neuromancer.

"You think that looks real?"

"Nah, but it looks like you care enough to fake it."

If you care enough to move your ssh port you're probably not totally clueless at best, and at worst you're setting out bait.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: