[Lvlug] Port Knocking
Brian Martin
brian.martin at uniquelykismet.com
Sat Dec 31 09:23:28 EST 2005
It's a combination lock, if done properly. If complicated enough and
set to a rolling cypher, it's a lovely additional layer of security.
BM
Pat Regan wrote:
>Faber Fedor wrote:
>
>
>>The only name that comes to mind is "portknocker" and I know that's not
>>it.
>>
>>
>
>Port knocking is a little different. With port knocking, the
>destination port remains closed until you "knock" on the server with the
>proper combination of ports. Preferably, you would only open the port
>to the machine that did the knocking, and only for a limited time.
>
>Before broadband, I used to do something similar with my dial up line.
>I would call home and let the phone ring once. Wait 30 seconds to 1
>minute, and ring it one more time. The computer would then dial in and
>register its IP address somewhere so I could ssh in to it. :)
>
>I am up in the air with regard to port knocking. Some people say it is
>just security through obscurity. It does, however, have the advantage
>that it keeps your ssh (or whatever) port hidden from the script kiddies.
>
>Pat
>
>
>------------------------------------------------------------------------
>
>_______________________________________________
>Lvlug mailing list
>Lvlug at thelinuxlink.net
>https://www.thelinuxlink.net/mailman/listinfo/lvlug
>
>
More information about the Lvlug
mailing list