Re: Help Planning a Home/Web Server
3. Port scanning will easily find that open random port. Security through obfuscation is never a good security method.
Originally Posted by hipnerd
If you *really* need to have ssh on a public IP, I recommend going the SSH-key way.
1. Generate a SSH Key
2. Use ssh-copy-id to copy the key to the server
3. Disable SSH logins via /etc/ssh/sshd_config
4. Install some kind of brute-force detector, either fail2ban, or CSF if your looking for a full firewall solution. Make sure you understand what CSF does before you turn it on - otherwise your just locking yourself out.
Ubuntu Forums Moderation Staff
Okay then. We're relying on mirror dust and fairies but now we have a plan which is progress - Emma