1
General Discussion / Re: reverse ssh, but with a catch
« on: February 07, 2023, 03:13:23 pm »Unfortunately, its not secure enough as the following two shows:
I disagree - those articles you quote discuss attempts to replay the port knock sequence to take advantage of the firewall port that gets opened to the knocking IP.
If you use port knock as a trigger to make an outbound connection, this does not apply since the target of the outbound is not the knocker IP but a DDNS endpoint you control.
For the record, I agree with Patrick that there's nothing wrong with a keypair-secured SSH inbound other than endless connection attempts in your logs. I enjoy a good puzzle though

Bart...