Re: [tlug] attack via ssh? (don't panic :-P)

["Stephen J. Turnbull" <stephen@example.com>]

>>>>> "David" == David Santinoli <marauder@example.com> writes:

    David> On Tue, May 17, 2005 at 05:51:52PM +0900, Stephen
    David> J. Turnbull wrote:

    mudrii> For securety over SSh try Port Knocking

    >> "Security through obscurity."  It will help with port scanners
    >> and

    David> IMHO that's not "security through obscurity", as security
    David> here totally depends on the key (sequence of knocks) and
    David> not on the secrecy of the protection scheme itself.

No, it depends on the secrecy of the protection scheme.  It's a
cleartext password being sent over the Internet, OK?

You're also vulnerable to a trivial DoS attack, which can shut off
your own access to the port knock enabled box.  Left as an exercise
for the reader.  (Hint, depending on the quality of implemention of
knockd, may also be most powerful with access to traffic.)

-- 
School of Systems and Information Engineering http://turnbull.sk.tsukuba.ac.jp
University of Tsukuba                    Tennodai 1-1-1 Tsukuba 305-8573 JAPAN
               Ask not how you can "do" free software business;
              ask what your business can "do for" free software.