|
|
| Distribution |
Debian unstable |
| Abteilung |
admin |
| Quelle |
fwknop |
| Version |
1.9.12-1 |
| Maintainer |
Franck Joncourt <franck.mail@dthconnex.com>
|
| Beschreibung |
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
The authorization server passively listens for authorization packets via
libcap, thus preventing any connections from being processed on the
traditional port. Access to a protected service is only granted after a
valid encrypted and non-replayed packet is detected.
|
| Abhängig von | iptables, libc6 (>= 2.3), libcrypt-cbc-perl, libcrypt-rijndael-perl, libdigest-sha-perl, libgnupg-interface-perl, libiptables-chainmgr-perl, libiptables-parse-perl, libnet-pcap-perl (>= 0.04-3), libnet-rawip-perl, libnetwork-ipv4addr-perl, libterm-readkey-perl, libunix-syslog-perl, perl, debconf (>= 0.5) | debconf-2.0, exim4 | mail-transport-agent |
| Offizielle Seiten |
Paket
Entwicklerinformationen
Bugs (Binärpaket)
Bugs (Quellpaket) |
| Download |
amd64 |
|
|
|
