Question about visibility
Grant Taylor
gtaylor at tnetconsulting.net
Wed Oct 24 18:11:31 UTC 2018
On 10/24/2018 07:24 AM, Timothy Metzinger wrote:
> There's no security in obscurity.
Obscurity by itself is not security.
Obscurity can be one many layers of security.
> Automated port scanners will sweep your system in a couple of seconds.
Yes, automated scanners can scan all the ports on a system. That also
functions as a great indicator that the connecting IPs are doing
something undesirable.
Moving the port is also a good way to avoid a lot of other scanners that
are simply looking for specific ports.
If nothing else, moving the port will likely reduce the number of
connections, which in itself likely reduces noise in logs, which helps
improve the signal to noise ratio of said logs.
--
Grant. . . .
unix || die
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3982 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20181024/d6405a77/attachment.bin>
More information about the bind-users
mailing list