sapporo

joined 2 months ago
sorted by: new top controversial old
How could simulating the ports as open be useful? in c/[email protected]
[–] [email protected] 1 points 3 weeks ago (2 children)

but an attacker isn't obliged to take on all the open ports, he could work with some of them - the ones that may seem the most interesting to him

How could simulating the ports as open be useful? in c/[email protected]
[–] [email protected] 1 points 3 weeks ago* (last edited 3 weeks ago) (4 children)

Ok, back to this then:

If everything reports open then what ports do you focus on first?

I don't see an issue here. An attacker would be overwhemed with choise and excitement so that he wouldn't be able to decide which port to choose first, get stuck for a several months unable to decide? He'd toss a coin then.

How could simulating the ports as open be useful? in c/[email protected]
[–] [email protected] 1 points 3 weeks ago

My ports are always open for you, my son. And doors, and windows.

How could simulating the ports as open be useful? in c/[email protected]
[–] [email protected] 1 points 3 weeks ago* (last edited 3 weeks ago) (1 children)

You can’t pretend-close it and still have that service work.

indeed, a service on a port would no longer properly work. However, pretending that an open port is closed is possible the same way when pretending that's open

How could simulating the ports as open be useful? in c/[email protected]
[–] [email protected] -5 points 3 weeks ago (2 children)

No!

How could simulating the ports as open be useful? in c/[email protected]
[–] [email protected] -2 points 3 weeks ago* (last edited 3 weeks ago) (6 children)

Do you youself understand what you're talking about?

then focus on those ports with more expensive/slower scans to find out what is running on those ports.

What do you mean by "focus on those ports"? What are "more expensive/slower scans"?

If everything reports open

not every port gets reported to be open but only some of them

what ports do you focus on first?

me? or an attacker? he could work with any ports he wishes

How could simulating the ports as open be useful? in c/[email protected]
[–] [email protected] 0 points 3 weeks ago (8 children)

how so?

5
How could simulating the ports as open be useful? (sopuli.xyz)
submitted 3 weeks ago* (last edited 3 weeks ago) by [email protected] to c/[email protected]
26 comments fedilink
 

I've read an article which describes how to simulate the close ports as open in Linux by eBPF. That is, an outside port scanner, malicious actor, will get tricked to observe that some ports, or all of them, are open, whereas in reality they'll be closed.

How could this be useful for the owner of a server? Wouldn't it be better to pretend otherwise: open port -> closed?

Simple and de-facto way to encrypt files and directories in Linux in c/[email protected]
Simple and de-facto way to encrypt files and directories in Linux in c/[email protected]
[–] [email protected] -1 points 1 month ago

"I don’t want to encypt them in-place because I’ll be uploading them onto a server, copying them on an external drive."

Simple and de-facto way to encrypt files and directories in Linux in c/[email protected]
[–] [email protected] 2 points 1 month ago (1 children)

I don't want to encypt them in-place because I'll be uploading them onto a server, copying them on an external drive.

22
Simple and de-facto way to encrypt files and directories in Linux (sopuli.xyz)
submitted 1 month ago* (last edited 1 month ago) by [email protected] to c/[email protected]
10 comments fedilink
 

Namely, de-facto, or one of, in Linux. Mature. No GUI. Open-source and free.

What is it? GPG or anything else?

For a separate file(s), or directory(ies), and not for the entire disk or partition.

11
Satellite Images Show First LNG Ship at Sanctioned Russian Plant (www.bloomberg.com)
submitted 1 month ago* (last edited 1 month ago) by [email protected] to c/[email protected]
0 comments fedilink
 

Our sanctions full of holes at play, guys. Even in LNG