Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org

savannah-hackers-public

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org

From:	Jim Meyering
Subject:	Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade
Date:	Sun, 20 Feb 2011 18:16:12 +0100

Bernie Innocenti wrote:
> On Sun, 2011-02-20 at 12:13 +0100, Sylvain Beucler wrote:
>> That would be quite inconvenient.
>
> How about bouncing on fencepost, then?

If you're concerned enough to be restricting access to the ssh port,
routing ssh traffic through fencepost could be seen as counterproductive.
Many people have access to fencepost.

I'd go with fwknop:

    http://www.cipherdyne.org/fwknop/docs/SPA.html

i.e., keep the ssh port closed, and open it momentarily only upon
receipt of a packet whose contents is GPG signed by someone we'd let in.

[Prev in Thread]

Current Thread

[Next in Thread]

[Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Sylvain Beucler, 2011/02/16
- Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Bernie Innocenti, 2011/02/16
  - Message not available
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Sylvain Beucler, 2011/02/20
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Bernie Innocenti, 2011/02/20
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Jim Meyering <=
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Bernie Innocenti, 2011/02/20
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Jim Meyering, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Bernie Innocenti, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Jim Meyering, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Bernie Innocenti, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Jim Meyering, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Bernie Innocenti, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Jim Meyering, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Bernie Innocenti, 2011/02/21
    - Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade, Jim Meyering, 2011/02/22

Prev by Date: Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade
Next by Date: Re: [Savannah-hackers-public] Re: [Savannah-register-public] [task #10901] Submission of A GNU minimal stack for UDP and/or TCP transactions
Previous by thread: Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade
Next by thread: Re: [Savannah-hackers-public] Re: [gnu.org #670138] colonialone.fsf.org Dom0 upgrade
Index(es):
- Date
- Thread