Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Is Portknocking "Real" Security?
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
how does brutus aet2 works? »
« Black Viper is back! Yes,  
AuthorAll Replies

ghost16825
Use security metrics
Premium
join:2003-08-26

reply to Daniel
Re: Is Portknocking "Real" Security?

said by Daniel See Profile :

Ghost,

You mention turning SSH on and off, but the daemon stays running all the time. The only thing that's changing is the firewall configuration between the portknocking client and SSH server.

The key issue here is very simple, and you alluded to it earlier; risk drops dramatically when you remove your daemon's presence from the Internet. It's just that simple, and that's what portknocking does...it effectively closes all Internet access to your daemon.

The concept of SPA is identical to me; only the implementation is different. I think it is a great layer as well. Again, because of the fact that it isolates you from zero-day exploits VERY effectively.
Sorry, I stand corrected on this. I was thinking more along the lines of a port being accessible by everyone whenever a single user entered the correct port sequence for access. Obviously I forgot that iptables can allow access to ports on a per IP address after a port knocking sequence. Hence, my previous questions do not apply. So it's possible to have thousands of users access a service remotely, but no indication to others that a remote service is listening on a certain port.
to forum · permalink · · 2007-03-31 21:36:58 · Reply to this


Daniel
Premium,MVM
join:2000-06-26
Pleasanton, CA
clubs:
said by ghost16825 See Profile :

So it's possible to have thousands of users access a service remotely, but no indication to others that a remote service is listening on a certain port.
Exactly, yes.
--
dmiessler.com -- grep understanding knowledge
to forum · permalink · · 2007-03-31 21:43:43 · Reply to this
Forums » Up and Running » Security » Securityhow does brutus aet2 works? »
« Black Viper is back! Yes,  

Saturday, 05-Dec 09:46:59 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [163] Comcast Releasing Promised Usage Meter
· [145] Avast Antivirus Has Gone Mad
· [126] Comcast Makes NBC Universal Acquisition Official
· [104] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [101] Google Invades ISP, OpenDNS Turf With Google Public DNS
· [94] The Bandwidth Hog Does Not Exist
· [84] FCC Ponders Moving From PSTN To IP Voice
· [81] Latest Consumer Reports Survey Not Kind To AT&T
· [79] New Bill Aims To Limit ETFs
· [74] Sprint Defuses GPS Privacy Media Bomb
Most people now reading
· False positive in Avast! or is it real? [Security]
· Wife might have to work in.... Iowa for a few months!!! [General Questions]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Windows 7 boot manager editing questions [Microsoft Help]
· Evading throttling with uTP / uTorrent 1.9a [TekSavvy]
· Why do you switch distros? [All Things Unix]
· DNS options, what are YOU using? [TekSavvy]
· Farewell [Bell Canada]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]