FLOSS Weekly 352: FWKNOP

The main application of fwknop is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities (both 0-day and unpatched code) much more difficult. It implements an authorization scheme known as Single Packet Authorization (SPA) that requires only a single encrypted packet to communicate various pieces of information including desired access through a Netfilter policy and/or specific commands to execute on the target system.

Hosts: Randal Schwartz and Gareth Greenaway

Guests: Michael Rash and Jonathan Bennett

Download or subscribe to this show at https://twit.tv/shows/floss-weekly

Thanks to CacheFly for providing the bandwidth for this podcast and Lullabot's Jeff Robbins, web designer and musician, for our theme music.

Sponsors:

• braintreepayments.com/floss


• digitalocean.com - promo code: FLOSS