NewsForge has an interesting article that critiques port knocking, which is a method of opening and closing service ports on servers via a secret knock sequence. Their conclusion?
In general, port knocking has too many points of potential attack. In particular, anyone with non-root access to the server should be able to trivially break the system. This does not seem to be of concern to the developers.
