From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from outbound.mailhop.org ([63.208.196.171] ident=mailnull) by speech.braille.uwo.ca with esmtp (Exim 3.36 #1 (Debian)) id 1Eo45d-0000yj-00 for ; Sun, 18 Dec 2005 14:21:01 -0500 Received: from 24-105-197-112.cm.mhcable.com ([24.105.197.112] helo=hhs48.com) by outbound.mailhop.org with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.51) id 1Eo45c-000CLn-9t for speakup@braille.uwo.ca; Sun, 18 Dec 2005 14:21:00 -0500 Received: from chuckh by hhs48.com with local (Exim 4.60) (envelope-from ) id 1Eo45b-0007G0-BY for speakup@braille.uwo.ca; Sun, 18 Dec 2005 14:20:59 -0500 X-Mail-Handler: MailHop Outbound by DynDNS X-Originating-IP: 24.105.197.112 X-Report-Abuse-To: abuse@dyndns.com (see http://www.mailhop.org/outbound/abuse.html for abuse reporting information) X-MHO-User: corcyra Date: Sun, 18 Dec 2005 14:20:59 -0500 To: "Speakup is a screen review system for Linux." Message-ID: <20051218192059.GA27853@hhs48.com> Mail-Followup-To: "Speakup is a screen review system for Linux." References: <20051218183748.GA22729@hhs48.com> <000101c60405$e3dbd3a0$6701a8c0@quark> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <000101c60405$e3dbd3a0$6701a8c0@quark> User-Agent: Mutt/1.5.11 From: Charles Hallenbeck Subject: Re: /etc/suauth X-BeenThere: speakup@braille.uwo.ca X-Mailman-Version: 2.1.5 Precedence: list Reply-To: "Speakup is a screen review system for Linux." List-Id: "Speakup is a screen review system for Linux." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 18 Dec 2005 19:21:01 -0000 Right you are! telnet is 23, ssh is 22. Thanks. On Sun, Dec 18, 2005 at 02:04:36PM -0500, Sina Bahram wrote: > One minor point > > I think you mean port 22, not 23 > > Take care, > Sina > > -----Original Message----- > From: speakup-bounces@braille.uwo.ca [mailto:speakup-bounces@braille.uwo.ca] > On Behalf Of Charles Hallenbeck > Sent: Sunday, December 18, 2005 1:38 PM > To: sdawes@telus.net; Speakup is a screen review system for Linux. > Subject: Re: /etc/suauth > > Steve, > > There is a Debian package called "knockd", not sure about other distros. > It comes with a port sniffing daemon and a client program. You configure the > daemon by specifying a trio of ports to monitor, and a couple of timing > parameters. Once you do that you can close port 23 on your firewall, but > keep the sshd daemon and the knockd daemon running. > > When some user wants to connect with ssh, she first issues the knock command > giving the host name and the three ports, which is detected on the remote > host, causing the firewall to open port 23 for a specified period. In my > case it is 10 seconds. During that time the calling system issues the usual > ssh or sftp command, makes connection, and the connection remains alive as > long as needed. However, once the 10 second period expires, the firewall > once again closes port 23 to any further connection requests unless again > preceded by the correct port sequence. > It is analogous to a "secret knock" on a door, as in spy movies or > prohibition films. Very cool. > > I connect to my system this way by issuing something like this, but with > the correct port numbers: > > knock hhs48.com 1234 2345 3456 ; ssh username@hhs48.com > > and it looks on the console identical to the case where port knocking is not > in the picture. > > What distro do you use? Can you search for "knockd" for your system? > > Ch;uck > > -- > The Moon is Waning Gibbous (91% of Full) But you can still get downloads > from http://www.mhcable.com/~chuckh > > _______________________________________________ > Speakup mailing list > Speakup@braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup > > > _______________________________________________ > Speakup mailing list > Speakup@braille.uwo.ca > http://speech.braille.uwo.ca/mailman/listinfo/speakup -- The Moon is Waning Gibbous (91% of Full) But you can still get downloads from http://www.mhcable.com/~chuckh