Posted Mar 5, 2007 23:26 UTC (Mon) by ldo
Parent article: Single Packet Authorization (Linux Journal)
The article illustrates exactly what happens when you toss together a "solution" (port knocking) without a proper analysis of what exactly is the security problem you are trying to solve. Then, when you discover shortcomings in the technique--like vulnerability to something as elementary as a replay attack--you try to patch it up by throwing even more complexity at it, in the hope that you will end up with something that actually works.
to post comments)