Shimmer support



  • Just wanted to bring attention to this new app, shimmer: http://shimmer.sourceforge.net/

    It opens 16 ports, but only one is real and the rest are honeypots. The ports change every minute, and you need a synchronised client to cryptographically determine the correct port. Connections to the wrong port result in blacklisting.

    It's a bit like port knocking but much more secure. Since there are honeypots, almost any attempt to connect to the server will result in blacklisting. Combined with the usual passwords on various services, it makes brute force attacks almost impossible.

    It would be really nice to see support in pfSense.


Log in to reply