______________________________________________________________

Clayton Dukes
______________________________________________________________

On Wed, Aug 15, 2012 at 12:41 PM, Peter Gyongyosi <gyp@balabit.hu> wrote:

On 08/14/2012 10:58 PM, Gergely Nagy wrote:
> Endre Szabo <syslog-ng@end.re> writes:
>
>> Here's a proof of concept of DNS based port knocking. Firewall opens
>> up port of SSHd for 10 seconds after nameserver answering to a
>> predefined DNS query. It uses pattern db and netfilter only.
>>
>> http://vimeo.com/endreszabo/dns-portknocking
> This is seriously wicked.

Agreed. Would you care to write a bit more about it and/or share your
patterndb/scripts?

thanks,
Peter

______________________________________________________________________________
Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng
FAQ: http://www.balabit.com/wiki/syslog-ng-faq