|File Search||Catalog||Content Search|
Its main application is to protect services such as OpenSSH with an additional layer of security in order to make the exploitation of vulnerabilities (both 0-day and unpatched code) much more difficult.
This is the client program responsible for accepting password input from the user, constructing SPA packets that conform to the fwknop packet format, and encrypting packet data.
fwknop - Firewall Knock Operator fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information including desired access through an iptables policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to m more»
This HOWTO is available online at the following link: http://www.cipherdyne.org/fwknop/docs/gpghowto.html If you want to use GnuPG to encrypt communications from the fwknop client to the fwknopd server, you will need to first create the necessary GnuPG keys on both the client and server. If you already have a GnuPG key that you use for email (or other) encryption, you can safely use this key more»
FWKNOP(8) FWKNOP(8) NAME fwknop - Firewall Knock Operator SYNOPSIS fwknop -A <ports> -R|-a|-s -D <host> [options] DESCRIPTION fwknop implements an authorization scheme known as Single Packet Authorization (SPA) for Linux systems running ipta‐ bles, and for Mac OS X and FreeBSD systems running ipf more»
fwknop (1.9.12-2) unstable; urgency=low * Refreshed maintainer email address: + d.control: Up more»
fwknop-1.9.12 (09/07/2009): - Fully integrated the FKO module that is part of the libfko library more»
Ability to send SPA packets over DNS: The fwknop client should allow the construction of SPA p more»
Format-Specification: http://svn.debian.org/wsvn/dep/web/deps/dep5.mdwn?op=file&rev=135 Maintainer: more»