On Nov 7, 2010, at 3:50 PM, Royce Williams <royce@tycho.org> wrote:
> Damien Hull said, on 11/07/2010 02:33 PM:
>> Is anyone here a fan of port knocking?
>>
>> I heard good and bad things about it. Last thing I heard was that it
>> wasn't as secure as people were making it out to be.
>
> I haven't used it either, but off of the top of my head ...
>
> If someone's sniffing the traffic, port knocking wouldn't be much
> additional help, because they could see your knock pattern.
>
> It would keep the wider Internet from being able to hammer at a given
> port, though.
>
> Royce
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org>
> with 'unsubscribe' in the message body.
>
Someone suggested it. Wasn't planing on using it though. If I did it
would be for ssh.
I'm using OSSEC. It blocks people doing dictionary attacks with
iptables. That works for me. I've also got ssh on a different pot.
I think that's enough.
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Sun Nov 7 15:54:41 2010
This archive was generated by hypermail 2.1.8 : Sun Nov 07 2010 - 15:54:41 AKST