Port Knocking in Action
tyldis writes "There was something called "port knocking" mentioned on Slashdot earlier, and now an implementation has sprung to life. Is this something worth pursuing?" The page is to an application called knockd which is a simple proof of concept with
hard coded knock sequences. Really interesting stuff.
That's all this is, and as many others are saying, not how I'd want my boxes protected.
That being said, I'm sure MS will find someway to package this into XP SP2's new firewall.
And what part of 'in operation' did you miss? During an ssh session the fact that ssh is running will certainly show up on a sniffer, if it didn't, there would not be packets and the connection would not exit. I did not see SCAN anywhere in the original post, so if you want to blast someone's post, please at least read the post (yeah I know it breaks slashdot tradition but it DOES improve the signal to noise ratio).