fwknop 2.6.10-16 source package in Ubuntu
Changelog
fwknop (2.6.10-16) unstable; urgency=high
* Install apparmor profile in /usr/share/apparmor/extra-profiles/
instead of the systemd service directory. Note that the profile
will not be used unless manually copied into /etc/apparmor.d/
(Closes: #1034055).
-- Francois Marier <email address hidden> Mon, 10 Apr 2023 20:52:01 -0700
Upload details
- Uploaded by:
- François Marier
- Uploaded to:
- Sid
- Original maintainer:
- François Marier
- Architectures:
- linux-any all
- Section:
- admin
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Mantic | release | universe | admin |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| fwknop_2.6.10-16.dsc | 2.7 KiB | f138a821a0719b8caf7630ce20c4163b64a120c66e5424546e5bae7001647d5d |
| fwknop_2.6.10.orig.tar.gz | 1.9 MiB | 2b15050bae92ec5210fcac944a7aa4bf9c651333a2b2960aabcd5cfc1d527cf1 |
| fwknop_2.6.10.orig.tar.gz.asc | 195 bytes | 0bdb56c93b0ba19e8bd3ad0044f0bf6e75cd7e21454d8fe0953e1b46e49e865c |
| fwknop_2.6.10-16.debian.tar.xz | 19.9 KiB | 8928290dae21df6ad9ef940703ebeb05b1b74a1c6d6f315dfe63da173c4d648d |
Available diffs
- diff from 2.6.10-15 to 2.6.10-16 (478 bytes)
No changes file available.
Binary packages built by this source
- fwknop-apparmor-profile: FireWall KNock OPerator - Apparmor profile
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
This is the apparmor profile for the FireWall KNock OPerator server.
- fwknop-client: FireWall KNock OPerator client side - C version
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
This is the client program responsible for accepting password input
from the user, constructing SPA packets that conform to the fwknop
packet format, and encrypting packet data.
- fwknop-client-dbgsym: debug symbols for fwknop-client
- fwknop-server: FireWall KNock OPerator server side - C version
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
The authorization server passively listens for authorization packets via
libpcap, thus preventing any connections from being processed on the
traditional port. Access to a protected service is only granted after a
valid encrypted and non-replayed packet is detected.
- fwknop-server-dbgsym: debug symbols for fwknop-server
- libfko-doc: FireWall KNock OPerator - documentation
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
The authorization server passively listens for authorization packets via
libpcap, so there is no service listening for network connections on the
traditional port. Access to a protected service is only granted after a
valid encrypted and non-replayed packet is detected.
.
This package provides the library documentation.
- libfko-perl: FireWall KNock OPerator - Perl module
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
The authorization server passively listens for authorization packets via
libpcap, so there is no service listening for network connections on the
traditional port. Access to a protected service is only granted after a
valid encrypted and non-replayed packet is detected.
.
This package provides the FKO module as a Perl interface.
- libfko-perl-dbgsym: debug symbols for libfko-perl
- libfko3: FireWall KNock OPerator - shared library
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
The authorization server passively listens for authorization packets via
libpcap, so there is no service listening for network connections on the
traditional port. Access to a protected service is only granted after a
valid encrypted and non-replayed packet is detected.
.
This package provides the runtime library for fwknop (written inC).
- libfko3-dbgsym: debug symbols for libfko3
- libfko3-dev: FireWall KNock OPerator - development library
The FireWall KNock OPerator implements an authorization scheme called
Single Packet Authorization (SPA), based on Netfilter and libpcap.
.
Its main application is to protect services such as OpenSSH with
an additional layer of security in order to make the exploitation of
vulnerabilities (both 0-day and unpatched code) much more difficult.
.
The authorization server passively listens for authorization packets via
libpcap, so there is no service listening for network connections on the
traditional port. Access to a protected service is only granted after a
valid encrypted and non-replayed packet is detected.
.
This package provides the development library and its headers.
