Gentoo Archives: gentoo-security

From: Willie Wong <wwong@×××××××××.EDU>
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] RE: port knocking
Date: Tue, 04 Oct 2005 22:01:38
In Reply to: Re: [gentoo-security] RE: port knocking by Dan Gregory
On Tue, Oct 04, 2005 at 04:31:38PM -0400, Dan Gregory wrote:
> > -A PREROUTING -m ttl --ttl-eq 202 -j ACCEPT > > > > echo 204 > /proc/sys/net/ipv4/ip_default_ttl > > 202 != 204? > > Is this a typo? >
Thought so first, but remember that each time a router touches it the ttl gets decreased. So if the linux routing box it two hops away from the laptop (which is likely if he has a separate wireless router dedicated to such use) the difference of two would be the right solution. :) W -- "What the hell, he thought, you're only young once, and threw himself out of the window. That would at least keep the element of surprise on his side." - Ford outwitting a Vogon with a rocket launcher by going into another certain death situation. Sortir en Pantoufles: up 54 days, 58 min -- gentoo-security@g.o mailing list