Michael Jager wrote:

>security through obscurity == no security
>
>

Suppose he uses a widely deployed telnet daemon.

Suppose a vunerability is found in that telnet daemon.

Suppose someone writes a nimda style virus that scans netblocks looking
for vunerable machines, infects vunerable machines, and then uses newly
infected machine for it's own purposes.

As such viruses are not known to try every port, but only the standard
port for the vunerable service, person running vunerable telnet daemon
on non-standard port will not get infected.

Will it keep out someone who is specifically trying to get into your
machine? No.
Will it give added security over the person running on a standard port? Yes.
Should you keep up to date on product patches regardless? Yes.

-- 
This message is part of the NZ ADSL mailing list. 
see http://unixathome.org/adsl/ for archives, FAQ, 
and various documents. 
To unsubscribe: send mail to majordomo@lists.unixathome.org 
with "unsubscribe adsl" in the body of the message