knock 0.5
Sponsored Links
knock 0.5 Ranking & Summary
File size:
0.088 MB
Platform:
Any Platform
License:
GPL (GNU General Public License)
Price:
Downloads:
1207
Date added:
2006-07-11
Publisher:
Judd Vinet
knock 0.5 description
knockd is a port-knock server.
It listens to all traffic on an ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client makes these port-hits by sending a TCP (or UDP) packet to a port on the server. This port need not be open -- since knockd listens at the link-layer level, it sees all traffic even if its destined for a closed port. When the server detects a specific sequence of port-hits, it runs a command defined in its configuration file. This can be used to open security holes in a firewall for quick access.
The example below could be used to run a strict (DENY policy) firewall that can only be accessed after a successful knock sequence.
1) Client sends four TCP SYN packets to Server, at the following ports:
38281, 29374, 4921, 54918
2) Server detects this and runs an iptables command to open port 22 to Client.
3) Client connects to Server via SSH and does whatever it needs to do.
4) Client sends four more TCP SYN packets to Server:
37281, 8529, 40127, 10100
5) Server detects this and runs another iptables to close port 22 to Client.
Enhancements:
- Added ability to change the knocking protocol (TCP/UDP) on a per-port basis using the knock client (instead of the -u switch)
- Patches from Philippe Lovis :
- Fixed memory leaks and potential security vulnerabilities
- Added --lookup option for DNS lookups (default is off)
- Added support for one-time sequences
- Added Interface directive to select the listening interface
- Moved packet filtering to kernel space with BPF filters
- Support for excluding TCP flags with "!"
- Removed the leftover/deprecated layer-2 MAC logic
It listens to all traffic on an ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client makes these port-hits by sending a TCP (or UDP) packet to a port on the server. This port need not be open -- since knockd listens at the link-layer level, it sees all traffic even if its destined for a closed port. When the server detects a specific sequence of port-hits, it runs a command defined in its configuration file. This can be used to open security holes in a firewall for quick access.
The example below could be used to run a strict (DENY policy) firewall that can only be accessed after a successful knock sequence.
1) Client sends four TCP SYN packets to Server, at the following ports:
38281, 29374, 4921, 54918
2) Server detects this and runs an iptables command to open port 22 to Client.
3) Client connects to Server via SSH and does whatever it needs to do.
4) Client sends four more TCP SYN packets to Server:
37281, 8529, 40127, 10100
5) Server detects this and runs another iptables to close port 22 to Client.
Enhancements:
- Added ability to change the knocking protocol (TCP/UDP) on a per-port basis using the knock client (instead of the -u switch)
- Patches from Philippe Lovis :
- Fixed memory leaks and potential security vulnerabilities
- Added --lookup option for DNS lookups (default is off)
- Added support for one-time sequences
- Added Interface directive to select the listening interface
- Moved packet filtering to kernel space with BPF filters
- Support for excluding TCP flags with "!"
- Removed the leftover/deprecated layer-2 MAC logic
knock 0.5 Screenshot
knock 0.5 Keywords
Bookmark knock 0.5
knock 0.5 Copyright
WareSeeker periodically updates pricing and software information of knock 0.5 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of knock 0.5 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
Featured Software
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
Related Information
Related Software
TCP Knocking provides a port knocking implementation. Free Download
EHNT is a tool which turns streams of Netflow (version 5) data into something useful and human-readable. Free Download
ObexPushD is a software used to receive files via Bluetooth, IrDA and TCP. Free Download
Net::CSTA project is a perl-module for talking to an ECMA CSTA Phase I server. Free Download
GNet is a network library. Free Download
Event::RPC is a event based transparent Client/Server RPC framework. Free Download
PootyPedia is a tool to track which hardware is in use by a software project. Free Download
UProxy is a proxy for UDP protocols. Free Download
Latest Software
Popular Software
Favourite Software
