Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

can you give an example for an implementation of portnocking/ssh/over https and client certs?


In general, it is a standard shore-wall firewall rule in perl, and the standard ssh protocol wrapper mod.

These are very well documented tricks, and when combined with a standard port 22 and interleaved knock ports tripwire 5 day ban rules... are quite effective against scanners too.

I am currently on the clock, so can't write up a detailed tutorial right now.

Best regards, =)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: