[Leaplist] will this work with IPCop
John Kramer
jakramer at ascenditsolutions.com
Wed Jan 9 17:35:53 GMT 2008
Very interesting concept and I definitely give points to the originator.
However, what does the extra trouble really buy you? The real threat to the
attacker is the blacklist. A randomly shifting port is just one means of
detecting an attack. Identifying multiple failed login attempts occuring
within a specified time period (perhaps even simultaneously) from a given IP
address is another means of detecting an attack. Both approaches id the
attacking address and blacklist it - however one is much easier on the
legitimate user and this advantage over shimmering should multiplied by the
number of legitmate users accessing the machine.
Am I missing something here?
-----Original Message-----
From: leaplist-bounces at leap-cf.org [mailto:leaplist-bounces at leap-cf.org] On
Behalf Of Mr. Brunkow
Sent: Tuesday, January 08, 2008 11:16 AM
To: This is the Leap Main List
Subject: [Leaplist] will this work with IPCop
http://shimmer.sourceforge.net/
--
Raymond L. Brunkow
5th Degree Black Belt
Chief Instructor and Owner
Sun State Martial Arts
(407) 786-2525
_______________________________________________
Leaplist mailing list
Leaplist at leap-cf.org
http://lists.leap-cf.org/mailman/listinfo/leaplist
More information about the Leaplist
mailing list