Skip to content
GitLab
提交 3adb3599 编辑于 作者: Michael Rash's avatar Michael Rash
浏览文件

minor README update

上级 227d0ab9
master 3.0_devel CSGSYY SCT230A access_conf_includes alotcer cmd_open_close_cycle dstuart_capture_modes dstuart_netfilter_queue dstuart_refactor_autoconf execvpe ipv6 libfiu_fault_injection ms_compatible_usernames rand_to_16bytes readme_include_fwknop_gui spa_destination_ip spa_encoding_fuzzing udp_listener udp_server_destination 2.6.11-pre1 2.6.10 2.6.9 2.6.9-pre1 2.6.8 2.6.7 2.6.7-pre1 2.6.6 2.6.5 2.6.4 2.6.4-pre1 2.6.3 2.6.2 2.6.1 2.6.0 2.6.0-pre1 fwknop-2.6.5 fwknop-2.6.4 fwknop-2.6.3
无相关合并请求
隐藏空白变更内容
行内 左右并排
显示
4 个添加3 个删除
+4 -3
README
+ 4
- 3
浏览文件 @ 3adb3599
......@@ -9,9 +9,10 @@ communicate desired access to a service that is hidden behind a firewall in a
default-drop filtering stance. The main application of SPA is to use a firewall
to drop all attempts to connect to services such as SSH in order to make the
exploitation of vulnerabilities (both 0-day and unpatched code) more difficult.
Any service that is concealed by SPA naturally cannot be scanned for with Nmap.
The fwknop project supports three different firewalls: iptables on Linux
systems, pf on OpenBSD, and ipfw on FreeBSD and Mac OS X.
Because there are no open ports, any service that is concealed by SPA naturally
cannot be scanned for with Nmap. The fwknop project supports three different
firewalls: iptables on Linux systems, pf on OpenBSD, and ipfw on FreeBSD and
Mac OS X.
SPA is essentially next generation Port Knocking (PK), but solves many of the
limitations exhibited by PK while retaining its core benefits. PK limitations
......
支持 Markdown
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册