[ANNOUNCE] new match extension about Port Knocking and SPA

[ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

[-- Attachment #1: Type: text/plain, Size: 1179 bytes --]

Hi,

We hope that this project can be added to the p-o-m, as netfilter
experimental part.


(*) Abstract

The PortKnockO Project implements Port Knocking and SPA (Simple Packet
Authentication) in kernel space, as a netfilter match extension. For
instance, this can be used to avoid brute force attacks to ssh or ftp
services.

It allows you to send messages from the kernel module to a user
application. For instance, this would enable to start up an
application (as a web server),  after a peer has knocked the ports
specified in a port knocking rule.

Pros:
        + You can configure Port Knocking or SPA rules with the iptables syntax.
        + It does not require any daemons running in background.
        + You do not need to know a new syntax depending on an application.
        + The netfilter module can send messages to an user
application through netlink sockets.


(*) Status

This project is in beta version and it is still under development.


(*) You can check the source code out here:

svn checkout svn://svn.berlios.de/portknocko/trunk


(*) More information at http://portknocko.berlios.de/


Any feedback is welcome!


Regards,

-- 
J. Federico Hernandez

[-- Attachment #2: pknock-0.3.tar.gz --]
[-- Type: application/x-gzip, Size: 20648 bytes --]

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Patrick McHardy]

fender wrote:
> We hope that this project can be added to the p-o-m, as netfilter
> experimental part.


We don't add entirely externally developed things to pom anymore,
but we could add an external repository to the sources.list.

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/3/07, Patrick McHardy <kaber@trash.net> wrote:
> fender wrote:
> > We hope that this project can be added to the p-o-m, as netfilter
> > experimental part.
>
>
> We don't add entirely externally developed things to pom anymore,
> but we could add an external repository to the sources.list.
>

Ok, that's a good news.

What else should we do to be included there?

Regards,

-- 
Federico

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Patrick McHardy]

fender wrote:
> On 5/3/07, Patrick McHardy <kaber@trash.net> wrote:
> 
>> fender wrote:
>> > We hope that this project can be added to the p-o-m, as netfilter
>> > experimental part.
>>
>>
>> We don't add entirely externally developed things to pom anymore,
>> but we could add an external repository to the sources.list.
>>
> 
> Ok, that's a good news.
> 
> What else should we do to be included there?


Nothing, just set up the repository and send me the link.

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/4/07, Patrick McHardy <kaber@trash.net> wrote:
> fender wrote:
> > On 5/3/07, Patrick McHardy <kaber@trash.net> wrote:
> >
> >> fender wrote:
> >> > We hope that this project can be added to the p-o-m, as netfilter
> >> > experimental part.
> >>
> >>
> >> We don't add entirely externally developed things to pom anymore,
> >> but we could add an external repository to the sources.list.
> >>
> >
> > Ok, that's a good news.
> >
> > What else should we do to be included there?
>
>
> Nothing, just set up the repository and send me the link.
>


I'm sorry, I don't know what link of these will be the necessary:

1) http://portknocko.berlios.de/  ---> (project home page)

2) http://developer.berlios.de/project/showfiles.php?group_id=7093  --->
(.tar.gz files to download)

3) http://svn.berlios.de/svnroot/repos/portknocko/trunk


Regards,


-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Pablo Neira Ayuso]

fender wrote:
> On 5/4/07, Patrick McHardy <kaber@trash.net> wrote:
>> Nothing, just set up the repository and send me the link.
>
> I'm sorry, I don't know what link of these will be the necessary:
> 
> 1) http://portknocko.berlios.de/  ---> (project home page)
> 
> 2) http://developer.berlios.de/project/showfiles.php?group_id=7093  --->
> (.tar.gz files to download)
> 
> 3) http://svn.berlios.de/svnroot/repos/portknocko/trunk

No, Patrick means a link to your repository in pom-ng format. So
everybody can get external patchlets via ./runme --download.

1) Create a tarball with your project in pom-ng format [1].
2) Create a file called "index" that contains the name of your extension
 in the same directory where you have put the tarball
3) Send us the URL to add it to our sources.list file.

[1] http://svn.netfilter.org/cgi-bin/viewcvs.cgi/trunk/patch-o-matic-ng/

-- 
The dawn of the fourth age of Linux firewalling is coming; a time of
great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Jan Engelhardt]

On May 6 2007 17:37, Pablo Neira Ayuso wrote:
>fender wrote:
>> On 5/4/07, Patrick McHardy <kaber@trash.net> wrote:
>>> Nothing, just set up the repository and send me the link.
>>
>> I'm sorry, I don't know what link of these will be the necessary:
>> 
>> 1) http://portknocko.berlios.de/  ---> (project home page)
>> 
>> 2) http://developer.berlios.de/project/showfiles.php?group_id=7093  --->
>> (.tar.gz files to download)
>> 
>> 3) http://svn.berlios.de/svnroot/repos/portknocko/trunk
>
>No, Patrick means a link to your repository in pom-ng format. So
>everybody can get external patchlets via ./runme --download.

What bugs me with those external repositories is that there is no
version control behind it. What's more, they can just "disappear"
and in the worst case a module disappears (as in: web hoster killed
the user), which is kinda sad. Not that it happened to me yet,
but the chance is there.

>1) Create a tarball with your project in pom-ng format [1].
>2) Create a file called "index" that contains the name of your extension
> in the same directory where you have put the tarball
>3) Send us the URL to add it to our sources.list file.
>
>[1] http://svn.netfilter.org/cgi-bin/viewcvs.cgi/trunk/patch-o-matic-ng/
>
>-- 
>The dawn of the fourth age of Linux firewalling is coming; a time of
>great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris
>

Jan
-- 

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/6/07, Pablo Neira Ayuso <pablo@netfilter.org> wrote:
> fender wrote:
> > On 5/4/07, Patrick McHardy <kaber@trash.net> wrote:
> >> Nothing, just set up the repository and send me the link.
> >
> > I'm sorry, I don't know what link of these will be the necessary:
> >
> > 1) http://portknocko.berlios.de/  ---> (project home page)
> >
> > 2) http://developer.berlios.de/project/showfiles.php?group_id=7093  --->
> > (.tar.gz files to download)
> >
> > 3) http://svn.berlios.de/svnroot/repos/portknocko/trunk
>
> No, Patrick means a link to your repository in pom-ng format. So
> everybody can get external patchlets via ./runme --download.
>
> 1) Create a tarball with your project in pom-ng format [1].
> 2) Create a file called "index" that contains the name of your extension
>  in the same directory where you have put the tarball
> 3) Send us the URL to add it to our sources.list file.
>
> [1] http://svn.netfilter.org/cgi-bin/viewcvs.cgi/trunk/patch-o-matic-ng/


Ok, thanks Pablo for your explanation. I will generate the tarball in
pom-ng format and I will send it to you as soon as possible.

Regards,

-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/6/07, Pablo Neira Ayuso <pablo@netfilter.org> wrote:
> fender wrote:
> > On 5/4/07, Patrick McHardy <kaber@trash.net> wrote:
> >> Nothing, just set up the repository and send me the link.
> >
> > I'm sorry, I don't know what link of these will be the necessary:
> >
> > 1) http://portknocko.berlios.de/  ---> (project home page)
> >
> > 2) http://developer.berlios.de/project/showfiles.php?group_id=7093  --->
> > (.tar.gz files to download)
> >
> > 3) http://svn.berlios.de/svnroot/repos/portknocko/trunk
>
> No, Patrick means a link to your repository in pom-ng format. So
> everybody can get external patchlets via ./runme --download.
>
> 1) Create a tarball with your project in pom-ng format [1].
> 2) Create a file called "index" that contains the name of your extension
>  in the same directory where you have put the tarball
> 3) Send us the URL to add it to our sources.list file.
>
> [1] http://svn.netfilter.org/cgi-bin/viewcvs.cgi/trunk/patch-o-matic-ng/
>

This is the link:

http://portknocko.berlios.de/pom-ng/

Regards,


-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Maximilian Wilhelm]

On Tuesday, May 8th fender wrote:
                    ~~~~~~
Is this your real name?
 
> This is the link:

> http://portknocko.berlios.de/pom-ng/

| Forbidden
| You don't have permission to access /pom-ng/pknock-0.3.tar.gz on this server.

Ciao
Max
-- 
	Follow the white penguin.

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/8/07, Maximilian Wilhelm <max@rfc2324.org> wrote:
> On Tuesday, May 8th fender wrote:
>
> > This is the link:
>
> > http://portknocko.berlios.de/pom-ng/
>
> | Forbidden
> | You don't have permission to access /pom-ng/pknock-0.3.tar.gz on this server.
>

Thanks Max.
I'm sorry, the berlios repository doesn't allow me to put external links.
I will try with another server and I will send you the link to the tarball.

Regards,

-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/8/07, Maximilian Wilhelm <max@rfc2324.org> wrote:
>
> > This is the link:
>
> > http://portknocko.berlios.de/pom-ng/
>
> | Forbidden
> | You don't have permission to access /pom-ng/pknock-0.3.tar.gz on this server.
>


Thanks Max.
I'm sorry, the berlios repository doesn't let me to put external files
(the tarball).
I will try with another server and I will send you the link to the tarball.

Regards,

-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Patrick McHardy]

fender wrote:
> This is the link:
> 
> http://portknocko.berlios.de/pom-ng/


Added to sources.list, thanks.

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

Hi Patrick,

On 5/10/07, Patrick McHardy <kaber@trash.net> wrote:
> fender wrote:
> > This is the link:
> >
> > http://portknocko.berlios.de/pom-ng/
>
>
> Added to sources.list, thanks.

I thought that you have read the last mail. This link doesn't work,
because the berlios repository doesn't let me to put external files
(the tarball).

I will try with another server and I will send you the new link to the tarball.

Regards,


-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

Hi Patrick,

On 5/11/07, fender <frozenspot@gmail.com> wrote:
> Hi Patrick,
>
> On 5/10/07, Patrick McHardy <kaber@trash.net> wrote:
> > fender wrote:
> > > This is the link:
> > >
> > > http://portknocko.berlios.de/pom-ng/
> >
> >
> > Added to sources.list, thanks.
>
> I thought that you have read the last mail. This link doesn't work,
> because the berlios repository doesn't let me to put external files
> (the tarball).
>
> I will try with another server and I will send you the new link to the tarball.
>

This is the new link to the tarball:

http://www.lugmen.org.ar/files/

http://www.lugmen.org.ar/files/index
http://www.lugmen.org.ar/files/pom-ng-ipt_pknock.tgz

Regards,

-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Pablo Neira Ayuso]

fender wrote:
> This is the new link to the tarball:
> 
> http://www.lugmen.org.ar/files/
> 
> http://www.lugmen.org.ar/files/index
> http://www.lugmen.org.ar/files/pom-ng-ipt_pknock.tgz

We're close to get it done. I just added your source to source.list,
however ./runme --download complains with "could not get
http://www.lugmen.org.ar/files//pknock.tar.gz". Please, fix the problem
and contact us again.

-- 
The dawn of the fourth age of Linux firewalling is coming; a time of
great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

Hi Pabo,

On 5/21/07, Pablo Neira Ayuso <pablo@netfilter.org> wrote:
> fender wrote:
> > This is the new link to the tarball:
> >
> > http://www.lugmen.org.ar/files/
> >
> > http://www.lugmen.org.ar/files/index
> > http://www.lugmen.org.ar/files/pom-ng-ipt_pknock.tgz
>
> We're close to get it done. I just added your source to source.list,
> however ./runme --download complains with "could not get
> http://www.lugmen.org.ar/files//pknock.tar.gz". Please, fix the problem
> and contact us again.

Thanks for your help. I will fix it and send it to you later.

Regards,

-- 
J. Federico Hernandez

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/23/07, fender <frozenspot@gmail.com> wrote:
> Hi Pabo,
>
> On 5/21/07, Pablo Neira Ayuso <pablo@netfilter.org> wrote:
> > fender wrote:
> > > This is the new link to the tarball:
> > >

[snip]

> > We're close to get it done. I just added your source to source.list,
> > however ./runme --download complains with "could not get
> > http://www.lugmen.org.ar/files//pknock.tar.gz". Please, fix the problem
> > and contact us again.
>
> Thanks for your help. I will fix it and send it to you later.
>

Ok, we have fixed it.

The tarball link is:

http://svn.berlios.de/svnroot/repos/portknocko/trunk/pom/

Regards,

-- 
Federico

/*
 *  J. Federico Hernandez Scarso (fender) <frozenspot (at) gmail . com>
 *  GPG Public Key: wwwkeys.eu.pgp.net key 6AE78BF2
 *  Fingerprint: 26AB 7A1B C2C4 70F8 0E7D  C3F4 9736 5CE2 6AE7 8BF2
 */

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Pablo Neira Ayuso]

fender wrote:
> The tarball link is:
> 
> http://svn.berlios.de/svnroot/repos/portknocko/trunk/pom/

Problems again, pknock.tar.gz seems to be a bzip2 file while
patch-o-matic expects a gzip file. Please, fix it.

$ file pknock.tar.gz
pknock.tar.gz: bzip2 compressed data, block size = 900k

-- 
The dawn of the fourth age of Linux firewalling is coming; a time of
great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[fender]

On 5/30/07, Pablo Neira Ayuso <pablo@netfilter.org> wrote:
> fender wrote:
> > The tarball link is:
> >
> > http://svn.berlios.de/svnroot/repos/portknocko/trunk/pom/
>
> Problems again, pknock.tar.gz seems to be a bzip2 file while
> patch-o-matic expects a gzip file. Please, fix it.
>
> $ file pknock.tar.gz
> pknock.tar.gz: bzip2 compressed data, block size = 900k
>

Thanks again Pablo. Problem fixed.

$ file pknock.tar.gz
pknock.tar.gz: gzip compressed data


-- 
Federico

/*
 *  J. Federico Hernandez Scarso (fender) <frozenspot (at) gmail . com>
 *  GPG Public Key: wwwkeys.eu.pgp.net key 6AE78BF2
 *  Fingerprint: 26AB 7A1B C2C4 70F8 0E7D  C3F4 9736 5CE2 6AE7 8BF2
 */

Re: [ANNOUNCE] new match extension about Port Knocking and SPA

[Pablo Neira Ayuso]

fender wrote:
> Thanks again Pablo. Problem fixed.
> 
> $ file pknock.tar.gz
> pknock.tar.gz: gzip compressed data

Applied. Now it must be available via ./runme --download. Gracias.

-- 
The dawn of the fourth age of Linux firewalling is coming; a time of
great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris