Bug#406627: marked as done (ITP: fwknop -- Single Packet Authorization via "FireWall KNock OPerator")
Your message dated Sun, 26 Oct 2008 14:35:30 +0000
with message-id <E1Ku6iI-0003C2-FF@ries.debian.org>
and subject line Bug#406627: fixed in fwknop 1.9.8-1
has caused the Debian Bug report #406627,
regarding ITP: fwknop -- Single Packet Authorization via "FireWall KNock OPerator"
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
406627: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=406627
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: submit@bugs.debian.org
- Subject: RFP: fwknop -- Single Packet Authorization via "FireWall KNock OPerator"
- From: Martin Mueller <descartes@gmx.de>
- Date: Fri, 12 Jan 2007 13:15:34 +0100
- Message-id: <45A77BE6.5070507@gmx.de>
Package: wnpp
Severity: wishlist
Description (from URL):
fwknop stands for the "FireWall KNock OPerator", and implements an
authorization scheme called Single Packet Authorization (SPA) that is
based around Netfilter and libpcap. SPA requires only a single
encrypted packet in order to communicate various pieces of information
including desired access through a Netfilter policy and/or complete
commands to execute on the target system. By using Netfilter to
maintain a "default drop" stance, the main application of this program
is to protect services such as OpenSSH with an additional layer of
security in order to make the exploitation of vulnerabilities (both
0-day and unpatched code) much more difficult. The authorization
server passively monitors authorization packets via libcap and hence
there is no "server" to which to connect in the traditional sense.
Access to a protected service is only granted after a valid encrypted
and non-replayed packet is monitored.
Advantages over Port Knocking:
+ SPA can utilize asymmetric ciphers for encryption
+ SPA packets are non-replayable
+ SPA cannot be broken by trivial sequence busting attacks
+ SPA only sends a single packet over the network
+ SPA is much faster
+ SPA is compatible with 2048-bit Elgamal GnuPG keys
Tools provided within the Package:
+ fwknop (8), fwknop client
+ fwknopd (8), fwknopd Single Packet Authorization (SPA) server
+ knopmd (8), legacy daemon to acquire Netfilter log messages for
deprecated port knocking mode.
+ knopwatchd (8), process monitoring daemon for fwknop daemons.
Copyright: GPL
URL: http://www.cipherdyne.org/fwknop/
--- End Message ---
--- Begin Message ---
Source: fwknop
Source-Version: 1.9.8-1
We believe that the bug you reported is fixed in the latest version of
fwknop, which is due to be installed in the Debian FTP archive:
fwknop-client_1.9.8-1_all.deb
to pool/main/f/fwknop/fwknop-client_1.9.8-1_all.deb
fwknop-server_1.9.8-1_amd64.deb
to pool/main/f/fwknop/fwknop-server_1.9.8-1_amd64.deb
fwknop_1.9.8-1.diff.gz
to pool/main/f/fwknop/fwknop_1.9.8-1.diff.gz
fwknop_1.9.8-1.dsc
to pool/main/f/fwknop/fwknop_1.9.8-1.dsc
fwknop_1.9.8.orig.tar.gz
to pool/main/f/fwknop/fwknop_1.9.8.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 406627@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Franck Joncourt <franck.mail@dthconnex.com> (supplier of updated fwknop package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 02 Oct 2008 19:32:55 +0200
Source: fwknop
Binary: fwknop-server fwknop-client
Architecture: source amd64 all
Version: 1.9.8-1
Distribution: unstable
Urgency: low
Maintainer: Franck Joncourt <franck.mail@dthconnex.com>
Changed-By: Franck Joncourt <franck.mail@dthconnex.com>
Description:
fwknop-client - FireWall KNock OPerator client side
fwknop-server - FireWall KNock OPerator server side
Closes: 406627 500655
Changes:
fwknop (1.9.8-1) unstable; urgency=low
.
* Initial release (Closes: #406627)
* Includes fr debconf translation (Closes: #500655)
Checksums-Sha1:
189bfbbdbb74cd0f6120fc1cabb2544f384a5088 1024 fwknop_1.9.8-1.dsc
7a9a711cc25e2e15e98b71e9d5e40bc89b45976c 227261 fwknop_1.9.8.orig.tar.gz
f93d3d085bf29a05f3f19f96362bd4ae9820c904 12662 fwknop_1.9.8-1.diff.gz
aa52d6d4cf958c9f4f920bc3cec3871b8a883bfe 129346 fwknop-server_1.9.8-1_amd64.deb
79ea77e633434b164c76e6e022d9195d0fe1ea38 61538 fwknop-client_1.9.8-1_all.deb
Checksums-Sha256:
1852b24c81d978a3ad9f69d4fda25e80458a1c30c9af5a5159f27f43928b5301 1024 fwknop_1.9.8-1.dsc
0ffbafe43a640674eb21de99c7233c790557a6239a098c3f05ef6545b3715176 227261 fwknop_1.9.8.orig.tar.gz
a5f95e49525126d6b4b9c03aac61225d9ad9ef3f54e68d31fcc2741401723b32 12662 fwknop_1.9.8-1.diff.gz
b97be5823f2cee5d0f3a27d0925ea018f1b72b49e82d72aafd0cb7d5f7cf7b0a 129346 fwknop-server_1.9.8-1_amd64.deb
3b9eb8c0402bdd172f1e64a238fbbd2099c82bf44d965c04b5d63297da61d0b7 61538 fwknop-client_1.9.8-1_all.deb
Files:
4649a23ea8275717cb5cfb9e28842cc5 1024 admin optional fwknop_1.9.8-1.dsc
9a687926b688e1aee3650fb68eacf437 227261 admin optional fwknop_1.9.8.orig.tar.gz
a090c02c96643fd2edf2f907e668ae6a 12662 admin optional fwknop_1.9.8-1.diff.gz
306b95be4a7366f895eb2d9c4bfd6cb4 129346 admin optional fwknop-server_1.9.8-1_amd64.deb
76874e2df9e7bcdf4769dafb902ff590 61538 admin optional fwknop-client_1.9.8-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkjpN9kACgkQScUZKBnQNIasGQCfZq1FfDUXYtgT0htsplWl0K0q
aGQAn0d9C95pIL5fl2w8kxJwQgQIx4P9
=KP/l
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: