From: Thibault H. <th...@si...> - 2004-10-27 15:56:01
|
Hi, I was wondering if anyone else is needing (or already adding) knockd support for devil-linux ? If you don't know what I'm talking about, you can visit the following: http://www.zeroflux.org/knock/ Suggesting other products implementing port knocking is welcomed, Thibault. |
From: Heiko Z. <he...@zu...> - 2004-10-28 00:50:27
|
Thibault Hild wrote: > Hi, > > I was wondering if anyone else is needing (or already adding) knockd > support for devil-linux ? > If you don't know what I'm talking about, you can visit the following: > http://www.zeroflux.org/knock/ > > Suggesting other products implementing port knocking is welcomed, > I'm not aware that anybody would work on it. -- Regards Heiko Zuerker http://www.devil-linux.org |
From: Dan S. <str...@dc...> - 2004-10-28 02:24:07
|
On Wed, 2004-10-27 at 17:42, Heiko Zuerker wrote: > Thibault Hild wrote: >=20 > > Hi, > > > > I was wondering if anyone else is needing (or already adding) knockd=20 > > support for devil-linux ? > > If you don't know what I'm talking about, you can visit the following: > > http://www.zeroflux.org/knock/ > > > > Suggesting other products implementing port knocking is welcomed, > > > I'm not aware that anybody would work on it. Isn't port knocking vulnerable to replay attacks, unless you put something sort of like s/key overtop of it? --=20 |
From: Thibault H. <th...@si...> - 2004-10-28 07:12:29
|
Dan Stromberg a écrit : > > >Isn't port knocking vulnerable to replay attacks, unless you put >something sort of like s/key overtop of it? > >-- > > I agree, but I consider this system only as a complementary protection against port scanning. You hide the door bu you still need to lock it (a "ssh door" for instance). Here is a different approach that you will probably find "more secure": http://doorman.sourceforge.net/ |