Walter Dnes wrote:
On Thu, Apr 14, 2005 at 11:01:03PM -0500, mathew wrote
Basically, it's security through obscurity. And in this case, the
obscurity will only last until the first port scan. There are only
65535 ports in total; there are plenty of tools out there which will
scan them all in a couple of minutes; adding code to go back to each
open port and check for an SMTP server is a trivial addition.
Rather than accessing random open ports, the road warriors' machines
should be using ssh-tunneling or VPN or whatever.
In which case there's no need for the "random ports" proposal in the
first place.
mathew
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg