Changing a port and enabling aslr are not "a lot of effort".
Changing the port is not the kind of security measure that will consume a lot of the attacker resources
alt Hacker News
Changing the port is not the kind of security measure that will consume a lot of the attacker resources