Re: Help Planning a Home/Web Server
3. Port scanning will easily find that open random port. Security through obfuscation is never a good security method.
Originally Posted by hipnerd
If you *really* need to have ssh on a public IP, I recommend going the SSH-key way.
1. Generate a SSH Key
2. Use ssh-copy-id to copy the key to the server
3. Disable SSH logins via /etc/ssh/sshd_config
4. Install some kind of brute-force detector, either fail2ban, or CSF if your looking for a full firewall solution. Make sure you understand what CSF does before you turn it on - otherwise your just locking yourself out.
Don't waste your energy trying to change opinions ... Do your thing, and don't care if they like it.