Combining Port Knocking With OS Fingerprinting

Posted by timothy on Saturday July 31, 2004 @06:50PM from the belt-and-suspenders-and-tape-and-elastic dept.

michaelrash writes "Port knocking implementations are on the rise. I have just released fwknop; (the Firewall Knock Operator) at DEF CON 12. Fwknop implements both shared and encrypted knock sequences, but with a twist; it combines knock sequences with passive operating system fingerprints derived from p0f. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Fwknop is based entirely around iptables log messages and so does not require a separate packet capture library. Also, at the Black Hat Briefings, David Worth has released a cryptographic port knock implementation based around one-time pads."

4 of 154 comments (clear)

Min score:

Reason:

Sort:

is is what IT is by Anonymous Coward · 2004-07-31 18:52 · Score: -1, Offtopic

Whats with the 'nothing to see here move along' article. Oh.. I know, I was so quick I even beat the article to first post.
Green slashdot by Anonymous Coward · 2004-07-31 19:06 · Score: -1, Offtopic

Color harmony
1. Re:Green slashdot by Anonymous Coward · 2004-07-31 19:10 · Score: -1, Offtopic
  
  Oh come on now, don't you just love hard-to-read, jizz-colored-on-white fonts? Makes you *deserve* reading Slashdot, instead of just lazily browsing...
sdIT.slashdot.org by Anonymous Coward · 2004-07-31 20:48 · Score: -1, Offtopic

shIT.slashdot.org

degauss don't work

somebody stop this