Demaestro - 11:55 pm on Jan 20, 2011 (gmt 0)
Reassigning port 22 to another number won't work. Port scanners (and a PCI audit) will find it anyway. It is the concept of security through obscurity, which won't stop any of the hardcore hackers.
Very true, but regardless of that point changing the port from the default port 22 in my case, drastically reduced the amount people "knocking" on that door.
port 22 for all IPs except your own is much better, because even if hackers manage to get your password or certificate you use to authenticate yourself,
I agree, it is just I implore both. However sometimes when on the go with my laptop I have to disable to IP stuff so I can get in from my hotel or the beach :)
You shed an excellent light on the subject though.