[syslog-ng] DNS-based port knocking demo
Peter Gyongyosi
gyp at balabit.hu
Wed Aug 15 18:41:32 CEST 2012
On 08/14/2012 10:58 PM, Gergely Nagy wrote:
> Endre Szabo <syslog-ng at end.re> writes:
>
>> Here's a proof of concept of DNS based port knocking. Firewall opens
>> up port of SSHd for 10 seconds after nameserver answering to a
>> predefined DNS query. It uses pattern db and netfilter only.
>>
>> http://vimeo.com/endreszabo/dns-portknocking
> This is seriously wicked.
Agreed. Would you care to write a bit more about it and/or share your
patterndb/scripts?
thanks,
Peter
More information about the syslog-ng
mailing list