'fwknop' implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. Its main use is to protect services such as SSH with an additional layer of security, which makies exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
DocumentationUser manpage available in HTML format from http://www.cipherdyne.org/projects/fwknop/docs.html
released on 8 August 2005
|License||Verified by||Verified on||Notes|
|GPLv2||Janet Casey||29 July 2005|
Leaders and contributors
|See the CREDITS file in the distribution for a complete list||Contributor|
Resources and communication
|Developer||VCS Repository Webview||http://www.cipherdyne.org/cgi/viewcvs.cgi/fwknop/|
This entry (in part or in whole) was last reviewed on 7 January 2008.