Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Well, yes. But where would the attacker be if they are in a position to intercept the traffic?

The answer to that may dictate if the technique would have value for you.



I'm just saying that port knocking just results in another secret you have to manage. It's just adding another locked door. Why use a locked door that's a pain in the ass and insecure in transit?

If you want two layers of secret-based auth- why would you make your second layer one that's objectively less secure and more unwieldy than other layers?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: