fwknop 2.6.10-16 source package in Ubuntu

Changelog

fwknop (2.6.10-16) unstable; urgency=high

  * Install apparmor profile in /usr/share/apparmor/extra-profiles/
    instead of the systemd service directory. Note that the profile
    will not be used unless manually copied into /etc/apparmor.d/
    (Closes: #1034055).

 -- Francois Marier <email address hidden>  Mon, 10 Apr 2023 20:52:01 -0700

Upload details

Uploaded by:
François Marier
Uploaded to:
Sid
Original maintainer:
François Marier
Architectures:
linux-any all
Section:
admin
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Mantic release universe admin

Downloads

File Size SHA-256 Checksum
fwknop_2.6.10-16.dsc 2.7 KiB f138a821a0719b8caf7630ce20c4163b64a120c66e5424546e5bae7001647d5d
fwknop_2.6.10.orig.tar.gz 1.9 MiB 2b15050bae92ec5210fcac944a7aa4bf9c651333a2b2960aabcd5cfc1d527cf1
fwknop_2.6.10.orig.tar.gz.asc 195 bytes 0bdb56c93b0ba19e8bd3ad0044f0bf6e75cd7e21454d8fe0953e1b46e49e865c
fwknop_2.6.10-16.debian.tar.xz 19.9 KiB 8928290dae21df6ad9ef940703ebeb05b1b74a1c6d6f315dfe63da173c4d648d

Available diffs

No changes file available.

Binary packages built by this source

fwknop-apparmor-profile: FireWall KNock OPerator - Apparmor profile

 The FireWall KNock OPerator implements an authorization scheme called
 Single Packet Authorization (SPA), based on Netfilter and libpcap.
 .
 Its main application is to protect services such as OpenSSH with
 an additional layer of security in order to make the exploitation of
 vulnerabilities (both 0-day and unpatched code) much more difficult.
 .
 This is the apparmor profile for the FireWall KNock OPerator server.

fwknop-client: FireWall KNock OPerator client side - C version

 The FireWall KNock OPerator implements an authorization scheme called
 Single Packet Authorization (SPA), based on Netfilter and libpcap.
 .
 Its main application is to protect services such as OpenSSH with
 an additional layer of security in order to make the exploitation of
 vulnerabilities (both 0-day and unpatched code) much more difficult.
 .
 This is the client program responsible for accepting password input
 from the user, constructing SPA packets that conform to the fwknop
 packet format, and encrypting packet data.

fwknop-client-dbgsym: debug symbols for fwknop-client
fwknop-server: FireWall KNock OPerator server side - C version

 The FireWall KNock OPerator implements an authorization scheme called
 Single Packet Authorization (SPA), based on Netfilter and libpcap.
 .
 Its main application is to protect services such as OpenSSH with
 an additional layer of security in order to make the exploitation of
 vulnerabilities (both 0-day and unpatched code) much more difficult.
 .
 The authorization server passively listens for authorization packets via
 libpcap, thus preventing any connections from being processed on the
 traditional port. Access to a protected service is only granted after a
 valid encrypted and non-replayed packet is detected.

fwknop-server-dbgsym: debug symbols for fwknop-server
libfko-doc: FireWall KNock OPerator - documentation

 The FireWall KNock OPerator implements an authorization scheme called
 Single Packet Authorization (SPA), based on Netfilter and libpcap.
 .
 Its main application is to protect services such as OpenSSH with
 an additional layer of security in order to make the exploitation of
 vulnerabilities (both 0-day and unpatched code) much more difficult.
 .
 The authorization server passively listens for authorization packets via
 libpcap, so there is no service listening for network connections on the
 traditional port. Access to a protected service is only granted after a
 valid encrypted and non-replayed packet is detected.
 .
 This package provides the library documentation.

libfko-perl: FireWall KNock OPerator - Perl module

 The FireWall KNock OPerator implements an authorization scheme called
 Single Packet Authorization (SPA), based on Netfilter and libpcap.
 .
 Its main application is to protect services such as OpenSSH with
 an additional layer of security in order to make the exploitation of
 vulnerabilities (both 0-day and unpatched code) much more difficult.
 .
 The authorization server passively listens for authorization packets via
 libpcap, so there is no service listening for network connections on the
 traditional port. Access to a protected service is only granted after a
 valid encrypted and non-replayed packet is detected.
 .
 This package provides the FKO module as a Perl interface.

libfko-perl-dbgsym: debug symbols for libfko-perl
libfko3: FireWall KNock OPerator - shared library

 The FireWall KNock OPerator implements an authorization scheme called
 Single Packet Authorization (SPA), based on Netfilter and libpcap.
 .
 Its main application is to protect services such as OpenSSH with
 an additional layer of security in order to make the exploitation of
 vulnerabilities (both 0-day and unpatched code) much more difficult.
 .
 The authorization server passively listens for authorization packets via
 libpcap, so there is no service listening for network connections on the
 traditional port. Access to a protected service is only granted after a
 valid encrypted and non-replayed packet is detected.
 .
 This package provides the runtime library for fwknop (written inC).

libfko3-dbgsym: debug symbols for libfko3
libfko3-dev: FireWall KNock OPerator - development library

 The FireWall KNock OPerator implements an authorization scheme called
 Single Packet Authorization (SPA), based on Netfilter and libpcap.
 .
 Its main application is to protect services such as OpenSSH with
 an additional layer of security in order to make the exploitation of
 vulnerabilities (both 0-day and unpatched code) much more difficult.
 .
 The authorization server passively listens for authorization packets via
 libpcap, so there is no service listening for network connections on the
 traditional port. Access to a protected service is only granted after a
 valid encrypted and non-replayed packet is detected.
 .
 This package provides the development library and its headers.