I read about that a lot in the forum.999frogs wrote:Many security guides advise changing the ssh port from 22 to something non standard
In my /var/log/auth.log I see so many attempts to connect using random usernames from same ip adress or from the same pool.ghans wrote:I believe it simply stops bots , which are a major nuisiance.
I don't think that there is anything which stops a targeted attack backed by enough money , knowledge and time.
Code: Select all
I was thinking about changing the port of Apache to 8081 and forward that port in router. Will that fix the issue?Dweeber wrote:On your workstation create an entry in it's hosts file for the hostname and point it to the local IP
Even I don't face any remote attempts (not even a single attempt) to connect my pi via ssh after I changed my ssh to a random port.Mursili wrote:I am not sure which issue you are working to fix at this time.
It has been a while, but I completely cut out failed authentication attempts when I switched the ssh port to 443 (which is normally used for https). When my sshd was listening on port 22 I got several attempts a day. I have a friend that said that he once could not get to his machine on port 443 from some hotels when he was traveling, but I have not encountered that (then again, I have not tried too many times).
Using another port for your web server will make it more difficult to connect to the server. I suppose it depends on who you want looking at the pages that you host there. It would simply take including the port in the link to your site. I have little knowledge about the security of web servers and instead serve any pages that I need using Google APIs (which costs a little bit monthly).
Again... the easiest solution for that is a simple hosts file entry. You point it to the IP of the pi. when you use your web browser using the hostname that outside users would use, it tells your browser to use that IP instead. Uses the same port etc...sim_tcr wrote: What I am trying to fix here is, when I try to launch my website (which is hosted on my pi) from my LAN, I see my router's login page. From outside my LAN, it work well.
Code: Select all