It's fallen out of favor these days, but if you're running on firewalls that can... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		fencepost on Jan 26, 2019 \| parent \| context \| favorite \| on: Practical Linux Hardening Guide It's fallen out of favor these days, but if you're running on firewalls that can be configured for port knocking consider doing that. A non-sequential knock pattern that unlocks the remote IP for X amount of time can prevent a ton of grinding attacks.

romeisendcoming on Jan 28, 2019 [–]

Add a TLS auth channel to the portknock with a wait window and OTP and you are really in business with this approach.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact