To mitigate the effort to maintain my personal server, I am considering to only expose ssh port to the outside and use its socks proxy to reach other services. is Portknocking enough to reduce surface of attack to the minimum?

  • 486@kbin.social
    link
    fedilink
    arrow-up
    0
    ·
    1 year ago

    Highly susceptible to replay and man in the middle attacks.

    fwknop isn’t susceptible to either.