Re: remote port unlocker - does such a thing exist??
From: Ant (pawnpacer@yahoo.com)Date: 07/13/02
- Next message: : "Re: Zonealarm&Win2000: Installation blocks all internet access"
- Previous message: Wolfgang Kueter: "Re: Zonealarm&Win2000: Installation blocks all internet access"
- In reply to: Scott Duckworth: "Re: remote port unlocker - does such a thing exist??"
- Next in thread: Eirik Seim: "Re: remote port unlocker - does such a thing exist??"
- Reply: Eirik Seim: "Re: remote port unlocker - does such a thing exist??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: pawnpacer@yahoo.com (Ant) Date: 13 Jul 2002 05:30:35 -0700
> > Can anyone tell me if there is a utility out there that would allow me
> > to remotely lock/unlock ports?
>
> One major problem with this is that if anybody sniffs this packet you are
> pretty much screwed - they could replicate this packet at any time and have
> access to your server. Encryption is not really an option in this case
> because you would have to use the same key all the time unless you could
> find another way to sync the keys between the two computers.
Because it would be using Stealth there would be no obvious way to
sync the keys/passwords as you say, so one way would be to store a
database of keys and allow each key to be used only once. As soon as
the RPU (Remote Port Unlocker) server receives a valid key it would
flag that key such that it can't be used again. The RPU client could
simply refer to a text file on a floppy disk which contains a few
hundred keys (eg I could use 50 character hex strings for each key).
So that would be one way!
Interestingly, instead of simply flagging each key when it's been
used, it could increment a number each time a request is made against
each key. It would then be obvious whether a hacker had managed to
sniff out the original request or not.
Once the RPU server has received a valid request, I'm not sure how it
would work from there. Interfacing with Zonealarm will probably be
tricky. So it would probably be easier to just have the RPU server run
an application (in this case a VNC server) instead of
enabling/disabling ports. Then in order to close down the VNC server I
could simply shut it down using VNC itself maybe.
> You could get the tried and true SSH (Secure Shell) server for windows
I was excited about this. But there's two things..
1) the SSH server isn't available from SSH.com, even for
none-commercial use.
2) Whenever I wanted to connect to my home computer using
SSH, i would have to install a multi-megabyte SSH client
first. Not as neat as the VNC client, which is simply an
executable which fits easily on a floppy disk.
> The bad thing about the whole encryption deal is that (I think) VNC is not
> encrypted. This means anybody could watch your every move, including
> keystrokes and mouse movements!
If I don't use SSH then I'd have to bare that in mind. Must confess I
don't understand how this is technically feasible by a hacker but I'll
take it as fact.
Ant
- Next message: : "Re: Zonealarm&Win2000: Installation blocks all internet access"
- Previous message: Wolfgang Kueter: "Re: Zonealarm&Win2000: Installation blocks all internet access"
- In reply to: Scott Duckworth: "Re: remote port unlocker - does such a thing exist??"
- Next in thread: Eirik Seim: "Re: remote port unlocker - does such a thing exist??"
- Reply: Eirik Seim: "Re: remote port unlocker - does such a thing exist??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
