[Novalug] Meeting topic suggestion - openvpn
jkohles at palantir.com
Wed Sep 28 19:50:10 EDT 2011
There is an existing technique called SPA (Single Packet Authentication) that allows you to send an encrypted packet to a host that basically says "allow access from the host I just connected from"). Take a look at 'fwknop' for an open source implementation.
Palantir Technologies | UNIX Systems Engineer
Jkohles at palantir.com | 703.957.5784
----- Original Message -----
From: Daniel Hauck [mailto:daniel at yacg.com]
Sent: Wednesday, September 28, 2011 04:40 PM
To: novalug at calypso.tux.org <novalug at calypso.tux.org>
Subject: Re: [Novalug] Meeting topic suggestion - openvpn
On 09/28/2011 07:23 PM, Jon LaBadie wrote:
> I'd really like a more secure way to get back to
> my home systems while traveling. Although I've
> had no successful breakins (that I know about :)
> if my router lets ssh traffic through I always
> have attempted logins.
> Perhaps a vpn would be a better solution.
> Anyone else who would like such a talk?
> Anyone comfortable giving it?
As a coder, I have always been fond of creating my own tools and
methods. I have always wanted to create a "secret knock" which would
result in making access ports available. Say, for example, a specially
crafted ICMP packet which would result in a script running and making
the source IP able to access a given port for SSH or something like that.
Maybe it's a stupid idea, but script-kiddies don't test for what they
don't know about,
Novalug mailing list
Novalug at calypso.tux.org
More information about the Novalug