Download Source Package fwknop:
The FireWall KNock OPerator implements an authorization scheme called Single Packet Authorization (SPA), based on Netfilter and libpcap.
Its main application is to protect services such as OpenSSH with an additional layer of security in order to make the exploitation of vulnerabilities (both 0-day and unpatched code) much more difficult.
The authorization server passively listens for authorization packets via libcap, thus preventing any connections from being processed on the traditional port. Access to a protected service is only granted after a valid encrypted and non-replayed packet is detected.
|
|
|
| Architecture | Version | Package Size | Installed Size | Files |
|---|---|---|---|---|
| alpha | 1.9.11-1 | 146.2 kB | 564 kB | [list of files] |
| amd64 | 1.9.11-1 | 142.5 kB | 552 kB | [list of files] |
| armel | 1.9.11-1 | 139.3 kB | 548 kB | [list of files] |
| avr32 (unofficial port) | 1.9.11-1 | 138.5 kB | 544 kB | [list of files] |
| hppa | 1.9.11-1 | 144.8 kB | 552 kB | [list of files] |
| hurd-i386 | 1.9.11-1 | 139.1 kB | 548 kB | [list of files] |
| i386 | 1.9.11-1 | 141.9 kB | 548 kB | [list of files] |
| ia64 | 1.9.11-1 | 148.9 kB | 580 kB | [list of files] |
| kfreebsd-amd64 | 1.9.11-1 | 141.3 kB | 504 kB | [list of files] |
| kfreebsd-i386 | 1.9.11-1 | 139.1 kB | 498 kB | [list of files] |
| m68k (unofficial port) | 1.9.10-2 | 134.4 kB | 540 kB | [list of files] |
| mips | 1.9.11-1 | 140.8 kB | 556 kB | [list of files] |
| mipsel | 1.9.11-1 | 140.7 kB | 556 kB | [list of files] |
| powerpc | 1.9.11-1 | 142.1 kB | 552 kB | [list of files] |
| s390 | 1.9.11-1 | 140.8 kB | 552 kB | [list of files] |
| sparc | 1.9.11-1 | 140.4 kB | 548 kB | [list of files] |