Question about visibility
Dave Warren
dw at thedave.ca
Thu Oct 25 00:30:51 UTC 2018
On 2018-10-24 07:24, Timothy Metzinger wrote:
> There's no security in obscurity. Automated port scanners will sweep
> your system in a couple of seconds.
There is *limited* security in obscurity but it's a valid layer.
Obviously insufficient as an only layer...
As a trivial example, I get orders of magnitude more ESMTP
authentication attempts against well known/standardized ports 25 and 587
than non-standard ports that speak the exact same protocol. Last I
looked, 25 receives substantially more traffic than 587 despite 587
being the better choice to attack these days.
More information about the bind-users
mailing list