Commit graph

3 commits

Author SHA1 Message Date
adam
9be429cd2b 0.7:
- Document the 'target' configuration directive.
- Merging OS-specific networking code to reduce LOCs and the
  sea of #ifdefs.
- Added 50ms timeout to pcap_open_live() to reduce CPU usage
  on network-heavy hosts. Pcap recommends we not use zero.

0.6:
- Cleanup: Don't null-check before free
- Cleanup: Consolidate flag-check logic
- Accept single-knock sequences
- Introduce a 'target' configuration directive, enabling
  knockd to react to connect attempts to a target host.
  Useful in cases where knockd is on a router and you want
  to send a target a wakeup packet.
2017-07-16 21:25:06 +00:00
adam
4fc4592863 Changes rev.1:
* Re-open log file on SIGHUP.
* Install knockd man page into section 8 instead of section 1.
2011-05-02 10:11:34 +00:00
adam
d7cbc3b30c knockd is a port-knock server. It listens to all traffic on an ethernet (or PPP)
interface, looking for special "knock" sequences of port-hits. A client makes
these port-hits by sending a TCP (or UDP) packet to a port on the server. This
port need not be open - since knockd listens at the link-layer level, it sees
all traffic even if it's destined for a closed port. When the server detects
a specific sequence of port-hits, it runs a command defined in its configuration
file. This can be used to open up holes in a firewall for quick access.
2010-11-30 12:35:12 +00:00