Subject: Re: security for netbsd as web server
To: Amadeus Stevenson <amadeus.stevenson@gmail.com>
From: Greg A. Woods <woods@weird.com>
List: netbsd-users
Date: 03/27/2005 17:20:56
[ On Saturday, March 26, 2005 at 11:17:43 (+0100), Amadeus Stevenson wrote: ]
> Subject: Re: security for netbsd as web server
>
> Port knocking sounds very interesting for administering remotely.
No, it's a huge waste of time and brain cells. Just learn to use SSH
and to use it properly as Mr. Bellovin suggested. If your end points
are properly secured already then SSH host keys are infinitely more
secure than this most ill-named silly "port knocking" trick, which is no
more than a poor facade.
--
Greg A. Woods
H:+1 416 218-0098 W:+1 416 489-5852 x122 VE3TCP RoboHack <woods@robohack.ca>
Planix, Inc. <woods@planix.com> Secrets of the Weird <woods@weird.com>