Archives
Archives
| From: | boger <boger@×××.ru> |
|---|---|
| To: | gentoo-security@l.g.o |
| Subject: | [gentoo-security] port knocking |
| Date: | Tue, 11 Oct 2005 18:04:30 |
| Message-Id: | 1699876524.20051011220020@ttk.ru |
| 1 | This is result of last week discussion about port knockers. |
| 2 | Its my second bash script (first is my firewall), so any feedback will be appreshiated ;) |
| 3 | |
| 4 | usage: ./knocker.sh <config file name> del |
| 5 | Path to config file is constant in knocker.sh. |
| 6 | del - is optional, simply deletes target chain |
| 7 | |
| 8 | script has no limits on knock sequences, and demands statefull filtering enabled |
| 9 | ipt -i $IF_INET -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT |
| File name | MIME type |
|---|---|
| knocker.sh | application/octet-stream |
| test | application/octet-stream |