- CipherDyne
fwknop stands for the "FireWall KNock OPerator", and implements an authorization scheme based around Netfilter and libpcap that requires only a single encrypted packet in order to communicate various pieces of information including desired access through a Netfilter policy and/or complete commands to execute on the target system. By using Netfilter to maintain a "default drop" stance, the main application of this program is to protect services such as OpenSSH with an additional layer of security in order to make the exploitation of vulnerabilities (both 0-day and unpatched code) much more difficult. The authorization server passively monitors authorization packets via libcap and hence there is no "server" to which to connect in the traditional sense. Acc...
in Public bookmarks
Copyright © 2003-2008 Netvouz. All rights reserved. |
RSS Feed
|
Blog |
Contact |
Terms of use |
Cookies |
Privacy policy
RSS Feed
|
Blog |
Contact |
Terms of use |
Cookies |
Privacy policy