[Discuss] port-knocking
Tom Metro
tmetro+blu at gmail.com
Wed Mar 27 18:48:45 EDT 2013
Rich Pieri wrote:
> Bill Horne wrote:
>> When combined with port-knocking, having a non-standard port for a
>> service like ssh is an effective means of preventing port-scanning
>> attacks.
>
> It also makes you vulnerable to denial of service.
Are you asserting that port knocking makes you more vulnerable to DoS
attacks? I'm not following your logic.
While I can imagine some implementations of port knocking, where failed
knock sequences shut down a service, there are certainly other
implementations where that is not the case.
Can you clarify what you meant?
-Tom
--
Tom Metro
Venture Logic, Newton, MA, USA
"Enterprise solutions through open source."
Professional Profile: http://tmetro.venturelogic.com/
More information about the Discuss
mailing list