Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Expanding the idea to Encrypted Port Knocking #1

Open
the-moisrex opened this issue Mar 4, 2023 · 0 comments
Open

Expanding the idea to Encrypted Port Knocking #1

the-moisrex opened this issue Mar 4, 2023 · 0 comments

Comments

@the-moisrex
Copy link

Hi;
I thought we'd continue our talks here.

My idea originally was about a kernel module mode specifically nftables' module.

Your ideas about multi-node port knocking was really good; I never thought about them.

My idea is that we would write a firewall rule, and because it's a firewall rule, we could enable more features and not just ports.

The port numbers sequence would be a hash combination of:

  • username (optional)
  • password
  • maybe a domain name? (optional)
  • timestamp (to make sure Man In The Middle Attack is not possible and no one can get the port sequence)
  • MAC Address (optional)
  • Or maybe even custom fields of values

With firewall, we can have many more features for free, for example we can deny access for specific days of the week.

I never thought about using pcap for this, but when I saw your project that gave me some ideas too. Now I'm thinking maybe using pcap for this can have some benefits, but we have to write a lot more codes to be able to match all the features of a firewall-based solution.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@the-moisrex