Date: Mon, 3 Sep 2001 14:14:34 -0400 (EDT) From: Chris BeHanna <behanna@zbzoom.net> To: <security@freebsd.org> Subject: RE: Possible New Security Tool For FreeBSD, Need Your Help. Message-ID: <20010903141244.U10812-100000@topperwein.dyndns.org> In-Reply-To: <F220E2sCRBHZXFZ0stg0000309a@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 3 Sep 2001, Not Going to Tell You wrote:
> This is not obfuscation! This is activation and de=activation. Obfuscation
> implies that the port is open but you are hidden this fact.
It *is* obfuscation: unless your "sequence of packets" is
cryptographically strong, it can be easily sniffed and replayed,
effectively nulling your "extra layer of security".
Note that to make it cryptographically strong, you'd effectively
end up doing what sshd does anyway: public key encryption.
--
Chris BeHanna
Software Engineer (Remove "bogus" before responding.)
behanna@bogus.zbzoom.net
I was raised by a pack of wild corn dogs.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010903141244.U10812-100000>