[Gllug] [Fwd: SSH Security Advisory: Centos (and other distros)]
Hari Sekhon
hpsekhon at googlemail.com
Wed Jul 8 09:18:42 UTC 2009
tid wrote:
> 2009/7/8 Hari Sekhon <hpsekhon at googlemail.com>:
>
>
>> Or port knocking or similar may be a better choice for the random src problem.
>>
>
> I'm interested in port knocking: does anyone use it in anger? I've heard of a
> few people with home setups, but haven't ever seen it in a larger environment.
>
I use it. It's not hard if you know linux and networking. Look at
knockd. Google is your friend.
There is a next gen crypted single port knock thingy but I forget it off
the top of my head... was on the todo list to perhaps replace my port
knocking with it instead but didn't get round to it yet.
If using in a larger environment, ie rolling out across lots of systems,
then I'd suggest you do it the same as for every other piece of software
you roll out.
-h
--
Hari Sekhon
http://www.linkedin.com/in/harisekhon
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list