On Mon, 2007-06-25 at 10:48 -0700, John N. Brahy wrote: > Hi Misc@, > > > > I was wondering what the general census on port knocking in the OpenBSD > community is. I like the idea of hiding services but I don't like the > idea of relying on a piece of code that's not part of the OpenBSD core. > I know when it comes down to it, it's only hiding ports and not actually > securing anything. > > > > I am assuming that it's not practiced in the OpenBSD world because there > are no port knocking ports. > > > > Anyone not agree with that summation? >
I can't speak for others, but I don't practice it because there are better (and developer-supported) ways to keep people out. If you're paranoid about hiding services, authpf is, in my opinion, superior to any other solution that I've seen.
