Re: block_ssh_guessers
- From: matt_left_coast <not@xxxxxxxxxx>
- Date: Fri, 21 Apr 2006 19:01:07 -0700
Lawrence D'Oliveiro wrote:
In article <oJ92g.4243$mu2.1615@xxxxxxxxxxxxxxxxxxxxxxxxxx>,
Bill Davidsen <davidsen@xxxxxxx> wrote:
Lawrence D'Oliveiro wrote:
In article <slrne47ssp.18i.ibuprofin@xxxxxxxxxxxxxxxxx>,
ibuprofin@xxxxxxxxxxxxxxxxxxxxxx (Moe Trin) wrote:
If you absolutely MUST allow connections from the world, and you can't
be bothered to set up certificates, google for port knocking.
port-knocking--don't be bloody stupid.
Care to share why you think port-knocking is stupid?
Ever heard of the term "replay attack"?
Ever hear of changing the sequence with each connection? As soon as the
sequence is used, it's changed, you can replay (IF that is, you were ever
able to get the sequence in the first place) all you want, the code you
sniffed is invalid.
Ever learn to think?
.
- Follow-Ups:
- Re: block_ssh_guessers
- From: Lawrence D'Oliveiro
- Re: block_ssh_guessers
- References:
- block_ssh_guessers
- From: Lawrence D'Oliveiro
- Re: block_ssh_guessers
- From: Moe Trin
- Re: block_ssh_guessers
- From: Lawrence D'Oliveiro
- Re: block_ssh_guessers
- From: Bill Davidsen
- Re: block_ssh_guessers
- From: Lawrence D'Oliveiro
- block_ssh_guessers
- Prev by Date: Re: block_ssh_guessers
- Next by Date: Re: hidden processes - how can I investigate
- Previous by thread: Re: block_ssh_guessers
- Next by thread: Re: block_ssh_guessers
- Index(es):
Relevant Pages
|
