Posted by: Anonymous
on October 09, 2007 01:39 AM
You are all right. Switching the port breaks script kiddie attacks and that is reduction in your risk exposure to that particular threat but it does nothing to block a deliberate, targeted attack.
The deliberate targeted attack may be rarer but is far more insidious - the attacker will be more subtle, will build up a collection of information to use in an attack and will be highly motivated towards success. They will be targeting a valuable resource rather than miscellaneous booty or a new bot host. So, likelihood lower but certainly not zero (and completely dependent on your personal circumstance) but potential consequence much, much higher.
The "mystery port" trick is good to stop the teenagers jiggling doorhandles down your street but is useless for the guy who knows you own a flatscreen and wants it for himself.