Date: Mon, 3 Sep 2001 23:42:05 -0500 (CDT) From: Marc Rassbach <marc@milestonerdl.com> To: Kevin Way <kevin.way@overtone.org> Cc: Not Going to Tell You <luckywolf19@hotmail.com>, freebsd-security@freebsd.org Subject: Re: Possible New Security Tool For FreeBSD, Need Your Help. Message-ID: <Pine.BSF.4.21.0109032334090.73934-100000@tandem.milestonerdl.com> In-Reply-To: <20010904033955.A52291@bean.overtone.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 4 Sep 2001, Kevin Way wrote: > > But by hidding the sshd port, maybe, just maybe, we can reduce the > > number of script kiddies from trying sshd scripts. > just a note that nobody has directly mentioned. You're also exposing > yourself to additional risks. No one seems to have mentioned creating a SKIP gateway. SKIP lost out to IPSEC, but would add another layer of encryption, and most of the script kiddies wouldn't know SKIP VPN if it bit 'em on the linux box. Security via obsecurity (that is what the poke the port IDS is) isn't a good solution. SKIP has white papers about its drawbacks and andvantages. And it will go thru firewalls. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0109032334090.73934-100000>