Friday, November 19, 2010
McAfee's 12 scams of Christmas
While my McAfee software has been pissing me off lately to the point of wanting to throw it through a window, I still think their 12 Scams of Christmas is a good warning to all users of the Interwebs. Remember, if it's free now, you'll pay for it later, maybe with the loss of your personal info.
PortKnocking
It's been a while since I've posted -- been busy with school.
A coworker mentioned something called portknocking and it sounded pretty interesting, so I did a little digging. check out this link for an in-depth description. Basically, it's a way to make your computer even more secure, sort of like adding a combination lock to your firewall. While not recommended for everyday users, it's an interesting concept. You start by configuring iptables/chains to drop all incoming packets. Then you add a rule to your chain that says something like "If I have a connection attempt on port 1024, 1025, and then 1026, then allow ssh connections." you can then ssh into your machine. When you're finished, you have a rule that says "If I have a connection attempt on port 1026, 1025, then 1024, close port 22." Done. Pretty nifty.
A coworker mentioned something called portknocking and it sounded pretty interesting, so I did a little digging. check out this link for an in-depth description. Basically, it's a way to make your computer even more secure, sort of like adding a combination lock to your firewall. While not recommended for everyday users, it's an interesting concept. You start by configuring iptables/chains to drop all incoming packets. Then you add a rule to your chain that says something like "If I have a connection attempt on port 1024, 1025, and then 1026, then allow ssh connections." you can then ssh into your machine. When you're finished, you have a rule that says "If I have a connection attempt on port 1026, 1025, then 1024, close port 22." Done. Pretty nifty.
Subscribe to:
Posts (Atom)