All,

Just wanted to make everyone aware of a project underway. It started as a simple port knocking interface for linux, but the scope has grown. It is now under development to use 'one time pad' style knocks to specified clients and encrypt the communications using RSA handshake - Blowfish session methods similar to ssh. It would allow access to 'known' clients through the firewall, but would remain 'stealthed' to unknown clients.

If anyone is interested in:

A) More details.
Info on how to be a guinea, err, Beta Tester
C) How to be a developer.

Please post here, or better, see me on irc.

Cheers,

Bob

Count me in as a beta tester and more info =)

Probably I dont have the skills or time to help with your coding, so its the best I could help.

cheers

I am interested in More details and ofcourse details how to be a Developer in that project

I'd certainly be interested in looking into this further, but can you post more details here? Are you going to startup a project page? How far along are you in development? Are you building on another project or starting from scratch?

--P>G>>

packet:



Details are coming along, but the basic premise is a linux daemon and linux & windows clients. The client will transmit UDP packets to the server in a pre-determined order. The packets will also contain encrypted information. They will contain the client ID, requested port and a token.

The daemon will compare the token/client ID combo to its list and if the knock sequence is correct for the token/client combo, the port will open. The server on succesful knock will also transmit an encrypted packet to the client with a new token/knock sequence. The idea is that a token/knock sequnce can only be used once (One time pad 'ish').

The client can store up to three token/knock sequences at one time.

The web page is: Knock

The latest bleeding edge stuff is at sourceforge. Follow the links on the page above.

This project is from scratch, building upon a small proof of concept port knocker I coded about 6 months ago.

Coders Wanted: Linux C for the daemon, Windows C/VB for the win client.

Coders should have a moderate skill level and have basic understanding TCP/IP and cryptography. Learners are also welcome. If you want to give it a try, see me on irc or email me: lovepump@gatheringofgray.com

Beginners: There is some small stuff to work away at too. You can get your name on a (hopefully) cool project!

Cheers,

Bob

Keep me up to date on the progress of this project it sounds extremely interesting and I would be willing to through some resources behind it.

Update:

Test code for the hashtable and conntrack stuff is up and running:

http://sourceforge.net/project/showfiles.php?group_id=119563

Bob

me = beginner. not to good on the linux side of things (as you would know lovepump, from irc). would be happy to help out any way possible.

-toe

Thanks for the offer toe!

Please let me know your coding capabilities, or if you are uncomfortable with coding, you can certainly lend a hand with documentation, etc.

Thanks,
Bob

The project is moving nicely, with updates to the source posted regularly.

For those who have offered, or wish to offer, their help, please join the #knock channel. It can found on the same servers you use to join #gso-chat.

Ta,

Bob

EDIT - The home page for the project is: Gathering of Gray

Bob