Rabcc Posted September 22, 2009 Share Posted September 22, 2009 Hi I came across a client app by Danny Sung called PortKnock lite. He gave details of the subject with references below http://en.wikipedia.org/wiki/port_knocking http://portknocking.org/ http://www.zeroflux.org/projects/knock It looks interesting and wondered what you guys thought of it. Is it valid, useful, secure? Would it make a suitable topic within an episode of HAK5? I was thinking if you can run different scripts based on the port knock sequence would that not be a more secure method of running an occasional service? A script to WOL a machine that then provides whichever daemon you need for remote admin. In the meantime the knock has opened the required ports and activates the forward rules. When finished another knock sequence to close the ports and change the forward rules. As an aside - I thought the process, not the act, behind this breach was neatly done. Apache breach http://www.net-security.org/secworld.php?id=8005 Cheers, Rabcc "old&noob" Nesbitt Ps I have checked the forum for this topic but could not find it so apologies if it has already been covered. PPs when searching the forum I get white letters on a grey background which makes it hard to read. Is it my browser? Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.