Combining Port Knocking With OS Fingerprinting 154
michaelrash writes "Port knocking implementations are on the rise. I have just released fwknop; (the Firewall Knock Operator) at DEF CON 12. Fwknop implements both shared and encrypted knock sequences, but with a twist; it combines knock sequences with passive operating system fingerprints derived from p0f. This makes it possible to allow, say, only Linux systems to connect to your SSH daemon. Fwknop is based entirely around iptables log messages and so does not require a separate packet capture library. Also, at the Black Hat Briefings, David Worth has released a cryptographic port knock implementation based around one-time pads."
OS fingerprinting, whew! (Score:4, Funny)
yuk yuk yuk
In other news... (Score:5, Funny)
these ports are made for knockin' (Score:2, Funny)
one of these days these ports
are gonna walk all over you........
Re:Port knocking, firewalls, DMZs,... (Score:0, Funny)
Dude, you got your history wrong. The DoD thing was the ARPANET. Then came the Internet, that was an extension to universities and scholars. Then came the Innurnet (also called the Intarweb) that was an extension to the rest of us, and as more and more big greedy companies and individuals lay their grubby hands on it, it's turning into something that you could call the CorpyWeb...
It's the Innurnet I was talking about. The Innurnet was free man.
Re:In other news... (Score:2, Funny)
Re:How much more is needed? (Score:2, Funny)
It's so we can block out all those Linux machines, because we all know that's where the hackers are coming from