libfko-doc 2.6.9-2 / usr / share / doc / libfko-doc / libfko.html / Introduction.html

This file is indexed.

/usr/share/doc/libfko-doc/libfko.html/Introduction.html is in libfko-doc 2.6.9-2.

This file is owned by root:root, with mode 0o644.

The actual contents of the file can be viewed below. 

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<!-- 
This manual is for the Firewall Knock Operator library, libfko.
(version 2.6.9, last updated 9 June 2016).

Copyright (C) 2009-2013 Damien Stuart.

The libfko manual is free; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.

The libfko manual is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with this manual; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA -->
<!-- Created by GNU Texinfo 6.5, http://www.gnu.org/software/texinfo/ -->
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>Introduction (Firewall Knock Operator Library - libfko)</title>

<meta name="description" content="Introduction (Firewall Knock Operator Library - libfko)">
<meta name="keywords" content="Introduction (Firewall Knock Operator Library - libfko)">
<meta name="resource-type" content="document">
<meta name="distribution" content="global">
<meta name="Generator" content="makeinfo">
<link href="index.html#Top" rel="start" title="Top">
<link href="Concept-Index.html#Concept-Index" rel="index" title="Concept Index">
<link href="index.html#SEC_Contents" rel="contents" title="Table of Contents">
<link href="index.html#Top" rel="up" title="Top">
<link href="Getting-Started.html#Getting-Started" rel="next" title="Getting Started">
<link href="index.html#Top" rel="prev" title="Top">
<style type="text/css">
<!--
a.summary-letter {text-decoration: none}
blockquote.indentedblock {margin-right: 0em}
blockquote.smallindentedblock {margin-right: 0em; font-size: smaller}
blockquote.smallquotation {font-size: smaller}
div.display {margin-left: 3.2em}
div.example {margin-left: 3.2em}
div.lisp {margin-left: 3.2em}
div.smalldisplay {margin-left: 3.2em}
div.smallexample {margin-left: 3.2em}
div.smalllisp {margin-left: 3.2em}
kbd {font-style: oblique}
pre.display {font-family: inherit}
pre.format {font-family: inherit}
pre.menu-comment {font-family: serif}
pre.menu-preformatted {font-family: serif}
pre.smalldisplay {font-family: inherit; font-size: smaller}
pre.smallexample {font-size: smaller}
pre.smallformat {font-family: inherit; font-size: smaller}
pre.smalllisp {font-size: smaller}
span.nolinebreak {white-space: nowrap}
span.roman {font-family: initial; font-weight: normal}
span.sansserif {font-family: sans-serif; font-weight: normal}
ul.no-bullet {list-style: none}
-->
</style>


</head>

<body lang="en">
<a name="Introduction"></a>
<div class="header">
<p>
Next: <a href="Preparation.html#Preparation" accesskey="n" rel="next">Preparation</a>, Previous: <a href="index.html#Top" accesskey="p" rel="prev">Top</a>, Up: <a href="index.html#Top" accesskey="u" rel="up">Top</a> &nbsp; [<a href="index.html#SEC_Contents" title="Table of contents" rel="contents">Contents</a>][<a href="Concept-Index.html#Concept-Index" title="Index" rel="index">Index</a>]</p>
</div>
<hr>
<a name="Introduction-1"></a>
<h2 class="chapter">1 Introduction</h2>
<a name="index-fwknop"></a>
<a name="index-Firewall-Knock-Operator_002c-intro"></a>
<a name="index-SPA_002c-intro"></a>
<a name="index-Single-Packet-Authorization_002c-intro"></a>

<p>The &ldquo;Firewall Knock Operator Library&rdquo; (libfko) is a C language library that
implements the functions needed to create and/or parse
<em>Single Packet Authorization</em> (<acronym>SPA</acronym>) data.  It is designed to
abstract the details of encoding, encryption, decoding, parsing, and verifying
<acronym>SPA</acronym> messages such as those used by Michael Rash&rsquo;s <em>Firewall
Knock Operator</em> (fwknop).
</p>
<p><em>fwknop</em> implements an authorization scheme known as Single Packet
Authorization (<acronym>SPA</acronym>) for strong service protection.  SPA requires only a single
packet which is encrypted, non-replayable, and authenticated via an HMAC in order
to communicate desired access to a service that is hidden behind a firewall in a
default-drop filtering stance.  The main application of SPA is to use a
firewall to drop all attempts to connect to services such as &rsquo;SSH&rsquo; in order
to make the exploitation of vulnerabilities (both 0-day and unpatched code)
more difficult.  Any service that is protected by SPA naturally cannot be
scanned for with &rsquo;Nmap&rsquo;.  The fwknop project supports three different
firewalls: &rsquo;iptables&rsquo; on Linux systems, &rsquo;pf&rsquo; on OpenBSD, and &rsquo;ipfw&rsquo; on FreeBSD
and Mac OS X.
</p>
<p>libfko is not an implementation of an fwknop client or server.  It simply
provides the functions for managing the <acronym>SPA</acronym> data used by those
programs.
</p>
<br>
<p>For more information on fwknop and <acronym>SPA</acronym>, go to
<a href="http://www.cipherdyne.org/fwknop">http://www.cipherdyne.org/fwknop</a>.
</p>
<table class="menu" border="0" cellspacing="0">
<tr><td align="left" valign="top">&bull; <a href="Getting-Started.html#Getting-Started" accesskey="1">Getting Started</a>:</td><td>&nbsp;&nbsp;</td><td align="left" valign="top">Purpose of the manual, and how to use it
</td></tr>
<tr><td align="left" valign="top">&bull; <a href="Features.html#Features" accesskey="2">Features</a>:</td><td>&nbsp;&nbsp;</td><td align="left" valign="top">Reasons to install and use libfko
</td></tr>
<tr><td align="left" valign="top">&bull; <a href="Overview.html#Overview" accesskey="3">Overview</a>:</td><td>&nbsp;&nbsp;</td><td align="left" valign="top">Basic architecture of the libfko library
</td></tr>
</table>

<hr>
<div class="header">
<p>
Next: <a href="Preparation.html#Preparation" accesskey="n" rel="next">Preparation</a>, Previous: <a href="index.html#Top" accesskey="p" rel="prev">Top</a>, Up: <a href="index.html#Top" accesskey="u" rel="up">Top</a> &nbsp; [<a href="index.html#SEC_Contents" title="Table of contents" rel="contents">Contents</a>][<a href="Concept-Index.html#Concept-Index" title="Index" rel="index">Index</a>]</p>
</div>



</body>
</html>

APT Browse - Built by Thomas Orozco.