this post was submitted on 19 Jun 2026
7 points (100.0% liked)

OpenBSD

725 readers
1 users here now

General OpenBSD community!

founded 3 years ago
MODERATORS
 

Port knocking is mostly a bad idea. But people keep wanting to do it, for some false sense of security. If you don't consider it a security control but a way to keep garbage out of your logs, it might be valid. In my case I'm using an old USG Pro 4 running OpenBSD as my firewall and I'd prefer to avoid writing stuff to the logs, as I'd prefer the flash not to wear out sooner than needed, definitely not thanks to background radiation on the internet.

top 1 comments
sorted by: hot top controversial new old
[–] ThorrJo 3 points 1 week ago

Port knocking is mostly a bad idea.

Good thing there's Single Packet Authorization then.