Re: Port Knocking questions
From: Ansgar -59cobalt- Wiechers (bugtraq_at_planetcobalt.net)
Date: 03/02/04
- Previous message: Byron Sonne: "Re: help with exchange"
- In reply to: H Carvey: "Re: Port Knocking questions"
- Next in thread: Yvan Boily: "RE: Port Knocking questions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 2 Mar 2004 02:03:35 +0100 To: security-basics@securityfocus.com
On 2004-03-01 H Carvey wrote:
> > Does it require the hacker to be able to ping the device?
>
> Again, it depends on the implementation. If the author of the
> application using port knocking requires an ICMP packet to be in the
> mix, then the answer would be "yes".
Not necessarily. I suppose we can assume that "being able to ping" means
that the remote host will respond with icmp-echo-replies to icmp-echo-
requests. For ICMP-based port-knocking (does this make sense at all,
since ICMP does not have ports?) the host will only need to log incoming
ICMP packets, but won't have to send echo-replies. Thus the caller won't
be able to ping the device.
Regards
Ansgar Wiechers
---------------------------------------------------------------------------
Free 30-day trial: firewall with virus/spam protection, URL filtering, VPN,
wireless security
Protect your network against hackers, viruses, spam and other risks with Astaro
Security Linux, the comprehensive security solution that combines six
applications in one software solution for ease of use and lower total cost of
ownership.
Download your free trial at
http://www.securityfocus.com/sponsor/Astaro_security-basics_040301
----------------------------------------------------------------------------
- Previous message: Byron Sonne: "Re: help with exchange"
- In reply to: H Carvey: "Re: Port Knocking questions"
- Next in thread: Yvan Boily: "RE: Port Knocking questions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
