Hacker News

2334 readers

385 users here now

Posts from the RSS Feed of HackerNews.

The feed sometimes contains ads and posts that have been removed by the mod team at HN.

founded 11 months ago

MODERATORS

patrick@lemmy.bestiver.se

rssbot@lemmy.bestiver.se

Portspoof: Emulate a valid service on all 65535 TCP ports (github.com)

submitted 7 months ago by rssbot@lemmy.bestiver.se to c/hackernews@lemmy.bestiver.se

1 comments fedilink hide all child comments

Comments

you are viewing a single comment's thread
view the rest of the comments

[–] nous@programming.dev 2 points 7 months ago

If you are willing to install this, why not configure the system to block an IP if it starts connecting to multiple closed ports? Something like crowdsec or fail2ban can do this. Then the attacker gets far less info - looks like all ports are closed and can be done for more then 8 hours.

permalink
fedilink
source