From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.43) id 1E0esp-0000zN-5h for garchives@archives.gentoo.org; Thu, 04 Aug 2005 12:31:35 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.4/8.13.4) with SMTP id j74CU3kY006628; Thu, 4 Aug 2005 12:30:03 GMT Received: from nproxy.gmail.com (nproxy.gmail.com [64.233.182.195]) by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j74CQTQF013186 for ; Thu, 4 Aug 2005 12:26:30 GMT Received: by nproxy.gmail.com with SMTP id h2so81407nfe for ; Thu, 04 Aug 2005 05:27:10 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=UaPgT7E7eLdmNnJwuYOJhnSNOqWPYfVGX856AB0QrbMDFC4gwcM1yOW2s5tXvrdwxXSsxOHx32kgSHrRuwKArB+jpmLhBf15fr7XqXLnM+3qFkOTULuKTnkB42EsHL4HbKgCqJEULRGrJpE6LfNDOrbI3QMgjpY3+qR1w1CNCUc= Received: by 10.48.143.9 with SMTP id q9mr57601nfd; Thu, 04 Aug 2005 05:20:24 -0700 (PDT) Received: by 10.48.143.12 with HTTP; Thu, 4 Aug 2005 05:20:24 -0700 (PDT) Message-ID: Date: Thu, 4 Aug 2005 14:20:24 +0200 From: Peter De Zutter To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Testing how secure a server is... In-Reply-To: <42F20597.4030200@gmx.net> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_7376_5311866.1123158024292" References: <8f7a9d5805080216505f9b4a51@mail.gmail.com> <1123092954.32729.25.camel@sysconcept.ca> <42F20597.4030200@gmx.net> X-Archives-Salt: 8200584d-17ff-41c5-9d87-785b465944d2 X-Archives-Hash: b7af168eac1f4db8ef969159a4150de0 ------=_Part_7376_5311866.1123158024292 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline This document should give you some info http://gentoo-wiki.com/HOWTO_Port_Knocking Peter On 8/4/05, Jarry wrote: >=20 > Joseph wrote: >=20 > > I have port knocking installed on firewall, to further protect any SSH > > attacks. > > So port 22 is closed (in stealth mode) and only opens if it received th= e > > right knock sequence, moreover it is only opened to an IP address from > > which received successful knock sequence; all others see this port as > > closed (in stealth mode). >=20 > Hm, never heard of it... > How can this methot be installed and used with gentoo/iptables? > Any more info about it? >=20 > Jarry >=20 > -- > gentoo-user@gentoo.org mailing list >=20 >=20 --=20 I have plenty of common sense,=20 I just choose to ignore it.=20 --- Calvin ------=_Part_7376_5311866.1123158024292 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline This document should give you some info

http://gentoo-wiki.c= om/HOWTO_Port_Knocking

Peter


On 8/4/05, Jarry <jarry@gmx.net> wro= te:
Joseph wrote:

> I have port knocking installed on firewall, to fu= rther protect any SSH
> attacks.
> So port 22 is closed (in ste= alth mode) and only opens if it received the
> right knock sequence, = moreover it is only opened to an IP address from
> which received successful knock sequence; all others see this port= as
> closed (in stealth mode).

Hm, never heard of it...
Ho= w can this methot be installed and used with gentoo/iptables?
Any more i= nfo about it?

Jarry

--
gentoo= -user@gentoo.org mailing list




--
I have plenty of common sense,
I just choose to ign= ore it.=20
--- Calvin
------=_Part_7376_5311866.1123158024292-- -- gentoo-user@gentoo.org mailing list