[CentOS] Defending againts simultanious attacks - Port Knocking

Sat Feb 17 00:34:39 UTC 2007
MrKiwi <mrkiwi at gmail.com>

Beware of the thread ...

http://slashdot.org/it/04/02/05/1834228.shtml?tid=126&tid=172

on Slashdot regarding Port Knocking - there are some good 
points, but loads and loads of misinformation and uninformed 
whining about Port Knocking lowering your overall level of 
security.

Regards,

MrKiwi

John R Pierce wrote:
> MrKiwi wrote:
>> Oh my ... im not a policeman, but that may have been a freudian slip?
>>
>> I meant "Port Knocking", and i have no idea what "Pork Knocking" is, 
>> although it does sound like an old english sport of the common people?
> 
> in a nutshell, your server listens for a special packet on a arbitrary 
> port, then allows the source IP of that packet to make a connection on 
> another port.    for instance, a UDP packet to port 3515 with a specific 
> payload, and you then open up SSH on 22 to the source of that UDP for 
> the next 10 seconds or whatever.
> 
> 
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>