On Fri, 2009-12-18 at 20:58 +0100, Peter N. M. Hansteen wrote:
> "Karl O. Pinc" <k...@meme.com> writes:
>
> >> I'd say this sounds like a situation where authpf could come in quite
> >> handy.
> >
> > How? I thought authpf grants additional rights to those who
> > can ssh. But he wants to restrict those allowed to ssh period.
>
> authpf loads rulesets, with all the flexibility that comes with pf.
> but you're right, it requires ssh to be accessible in order to log in,
> and so may not be what the original poster was looking for.
>
It would be awesome if pf could implement some port knocking features in
next releases...maybe and associate daemon (like spamd with email
attempts delivers...or something like that). Do you think is it
possible?
Regards,
Alvaro
