Date: Fri, 31 Aug 2001 12:43:48 -0700 From: Jason DiCioccio <geniusj@bluenugget.net> To: Not Going to Tell You <luckywolf19@hotmail.com> Cc: security@FreeBSD.org, freebsd-stable@FreeBSD.ORG Subject: Re: Possible New Security Tool For FreeBSD, Need Your Help. Message-ID: <20010831124348.B2253@bluenugget.net> In-Reply-To: <F2216sKBEr8pkpLkTgb00001213@hotmail.com> References: <F2216sKBEr8pkpLkTgb00001213@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Actually you could even have it so it would only accept() for about 10 seconds. it doesn't have to be accepting connections when you're SSH'd in. The problem with this of course is it's another key that can be sniffed. I don't see how it would hurt though as long as you're using secure protocols/services as well. Basically, just don't put all of your trust into that one key :) Cheers, -JD- On Fri, Aug 31, 2001 at 07:33:51PM +0000, Not Going to Tell You wrote: > Sorry for the blank e-mail. > > I have an idea, maybe you either know if it is already been done or you can > help me write this software: > > What if I would scan 5 ports in a defined order, within a define period of > time on my remote box. A program on the box would recognize these 5 port > scans as a "Key" from a remote user to open a port or to activate another > software. > > Why would this be good? > I could close all the ports on my box except those needed to provide a > service (i.e. port 80), however, how can I remote manage it? So then I would > > have to open a sshd port also. But this leads to a potential security > problem when scanned by a hacker. So, what if I had a program that sent a > type of "Key" to the box and the box recognized that the key sequence order > was from me, then opened the sshd port. After I was finished with the sshd > session, I would run another program to close the port behind me? > > Any thoughts and help is welcomed. > > Lucky > > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > -- Jason DiCioccio - geniusj@bsd.st - PGP Key @ http://bsd.st/~geniusj/pgpkey.asc [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 iQA/AwUBO4/o9NNQlZYENnwIEQIwcQCfRt60q4zGmFFawlmrG+ffhol6LrEAoLqW Ecb6W/Im9TynUpoTZs92FpqJ =WTqJ -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010831124348.B2253>