Communities

Writing
Writing
Codidact Meta
Codidact Meta
The Great Outdoors
The Great Outdoors
Photography & Video
Photography & Video
Scientific Speculation
Scientific Speculation
Cooking
Cooking
Electrical Engineering
Electrical Engineering
Judaism
Judaism
Languages & Linguistics
Languages & Linguistics
Software Development
Software Development
Mathematics
Mathematics
Christianity
Christianity
Code Golf
Code Golf
Music
Music
Physics
Physics
Linux Systems
Linux Systems
Power Users
Power Users
Tabletop RPGs
Tabletop RPGs
Community Proposals
Community Proposals
tag:snake search within a tag
answers:0 unanswered questions
user:xxxx search by author id
score:0.5 posts with 0.5+ score
"snake oil" exact phrase
votes:4 posts with 4+ votes
created:<1w created < 1 week ago
post_type:xxxx type of post
Search help
Notifications
Mark all as read See all your notifications »
Users Search
Help Dashboard Sign In Sign Up
Q&A Meta
Q&A
Posts Tags Edits
Ask Question

Welcome to the Power Users community on Codidact!

Power Users is a Q&A site for questions about the usage of computer software and hardware. We are still a small site and would like to grow, so please consider joining our community. We are looking forward to your questions and answers; they are the building blocks of a repository of knowledge we are building together.

Post History

66%
+2 −0
Q&A What is the main reason for some website hosting companies to change ports?

Many automated scanners will attempts brute forcing SSH servers running on port 22 using common username+password pairs. This is relatively easy. You just have to pick an IP range and you have as m...

posted 3y ago by gronostaj‭

Answer
#1: Initial revision by user avatar gronostaj‭ · 2021-06-28T06:19:10Z (over 3 years ago) 
Many automated scanners will attempts brute forcing SSH servers running on port 22 using common username+password pairs. This is relatively easy. You just have to pick an IP range and you have as many ports to test as there are IPs in the range (one port per IP).

Change the SSH port to a different one and now there are thousands of ports to test per IP in that same range. This makes this type of attack unfeasible. Finding an open SSH port on a particular host is relatively easy, but if you're attempting to brute force thousands of hosts it may not be worth it. There are many easier targets.