Fwknop
fwknop
http://www.cipherdyne.org/fwknop/
'fwknop' implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. Its main use is to protect services such as SSH with an additional layer of security, which makies exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
Documentation
User manpage available in HTML format from http://www.cipherdyne.org/projects/fwknop/docs.html
Related Projects
Licensing
| License | Verified by | Verified on | Notes |
|---|---|---|---|
| GPLv2 | Janet Casey | 29 July 2005 |
Leaders and contributors
| Contact(s) | Role |
|---|---|
 Michael Rash | Maintainer |
| See the CREDITS file in the distribution for a complete list | Contributor |
Resources and communication
| Audience | Resource type | URI |
|---|---|---|
| Developer | VCS Repository Webview | http://www.cipherdyne.org/cgi/viewcvs.cgi/fwknop/ |
| Bug Tracking,Developer,Support | mailto:mbr@cipherdyne.org |
Software prerequisites
This entry (in part or in whole) was last reviewed on 7 January 2008.
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.
The copyright and license notices on this page only apply to the text on this page. Any software described in this text has its own copyright notice and license, which can usually be found in the distribution itself.