8.0/10 (2 أصوات )

"fwknop يقف ل" الجدار الناري خبط المشغل "."



  • مرات التنزيل: 211
  • متطلبات التشغيل: Linux,BSD
  • الحجم: 368KB
  • الترخيص: GPL Free
  • الاصدار :
  • اضيف في: 0000-00-00 00:00:00
  • اخر تحديث: 20/08/2010
  • الموقع علي الانترنت:






Description

"fwknop stands for the"FireWall KNock OPerator"." Edit By BS Editor: SPA requires only a single encrypted packet in order to communicate various pieces of information including desired access through a firewall policy and/or complete commands to execute on the target system. By using a firewall to maintain a"default drop"stance, the main application of fwknop is to protect services such as OpenSSH with an additional Layer of security in order to make the exploitation of vulnerabilities (both 0-day and unpatched code) much more difficult. With fwknop deployed, anyone using Nmap to look for SSHD can't even tell that it is listening; it makes no difference if they have a 0-day exploit or not. The authorization server passively monitors authorization packets via libcap and hence there is no"server"to which to Connect in the traditional sense. Access to a protected service is only granted after a valid encrypted and non-replayed packet is monitored from an fwknop client (see the following network diagram; the SSH session can only take place after the SPA packet is monitored):





التعليقات علي fwknop
اضافة تعليق

تعليقات الفيسبوك

تعليقات الموقع