[clug] shimmer alternative SPA

Daniel Black daniel.subs at internode.on.net
Wed Jul 9 23:10:20 GMT 2008


On Wed, 9 Jul 2008 08:26:30 pm Sam Couter wrote:
> Kim Holburn <kim at holburn.net> wrote:
> > We were talking about protecting ssh servers.
> >
> > Does anyone use shimmer?  It looks like an interesting idea.
> > http://shimmer.sourceforge.net/
>
> Interesting. Kinda like port knocking on steroids.
>
> Just like port knocking, it looks like a way to make yourself vulnerable
> to very easy DoS attacks.

Alternative is single packet authentication
http://www.linuxjournal.com/article/9621

Though really you could just use ssh keys and disable password authentication 
if you've got the resouces to install arbitary sofware keys on the computers 
that need access.


-- 

Daniel Black
--
Proudly a Gentoo Linux User.
Gnu-PG/PGP signed and encrypted email preferred
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x76677097
GPG Signature D934 5397 A84A 6366 9687  9EB2 861A 4ABA 7667 7097
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
Url : http://lists.samba.org/archive/linux/attachments/20080710/c48d0dd9/attachment.bin


More information about the linux mailing list