Displaying 1 result from an estimated 1 matches for "otcpmd5".
Did you mean:
tcpmd5
2016 Jan 14
5
[Patch] TCP MD5SIG for OpenSSH
...ter* connection establishment, thus
doesn't protect against SYN floods. This is because server doesn't
know (in userspace) what the address of the peer is until they
connect. Again because signed addresses.
Setting up:
* Add "TCPMD5 foorbarSecret" to sshd_config
* SSH with "-oTCPMD5=foobarSecret"
Patch attached, but it's an ugly patch for 7.1p. I didn't want to put
too much effort into cleaning up and documenting everything if the
concept itself would rejected outright.
It needs formatting, portability, apply to CVS HEAD, and include file
changes at
least. But i...