Difference between revisions of "Fwknop"
Jump to navigation
Jump to search
↑ https://serverfault.com/a/608976
| Line 4: | Line 4: | ||
* <code>fwknop --key-gen</code> Ref: https://www.cipherdyne.org/fwknop/docs/fwknop-tutorial.html#quick-start | * <code>fwknop --key-gen</code> Ref: https://www.cipherdyne.org/fwknop/docs/fwknop-tutorial.html#quick-start | ||
* Config files: <code>/etc/fwknop/access.conf</code> | * Config files: <code>/etc/fwknop/access.conf</code> | ||
| + | |||
| + | Mac installation: <code>brew install fwknop</code> | ||
== See also == | == See also == | ||
Revision as of 17:11, 25 December 2019
"FireWall KNock OPerator" implements an authorization scheme called Single Packet Authorization (SPA) (encrypted, non-replayed, with an HMAC SHA-256)
fwknop --key-genRef: https://www.cipherdyne.org/fwknop/docs/fwknop-tutorial.html#quick-start- Config files:
/etc/fwknop/access.conf
Mac installation: brew install fwknop
See also
- Port knocking,
fail2ban[1]fwknop, DenyHosts - OpenSSH (changelog):
/etc/ssh/sshd_config|/etc/ssh/ssh_config|~/.ssh/|openSSL | sshd logs|sftp|scp|authorized_keys|ssh-keygen|ssh-keyscan|ssh-add|ssh-agent|ssh|Ssh -O stop|ssh-copy-id|CheckHostIP|UseKeychain, OpenSSF iptablesufwfirewalldnftablesfirewall-cmdipfw (FreeBSD)PF (OpenBSD), netsh advfirewall- Security tools: Vulnerability scanner, port scan, Host sweep,
nmap,nping,ncat, nc,psad, Gordon Lyon - Port Knocking
Advertising:
