search for: port_knock_rc

...s and in another window PORT_KNOCK_BIN=/tmp/zt ./s-port-knock.sh \ knock localhost 45045 .Zkey-pub.pem SOME-PUB-SSH-KEY and if that key is in .Zsigs it works. One can create a MAGIC and overwrite the block and allow hooks by starting the server (/ the client) with the environment variable PORT_KNOCK_RC pointing to some file. The environment is not cleared so that is passed through. Ie MAGIC=hallo act_block() { echo >&2 '.XRC blocking '$1; } act_allow() { echo >&2 '.XRC allowing '$1', principal: '$2; } The magic is what SSH with create a signature fo...

Steffen Nurpmeso wrote in <20240704180538.iV4uex29 at steffen%sdaoden.eu>: |Simon Josefsson wrote in | <87jzi1fg24.fsf at kaka.sjd.se>: ||Jochen Bern <Jochen.Bern at binect.de> writes: ||> (And since you mention "port knocking", I'd like to repeat how fond I ||> am of upgrading that original concept to a single-packet ||> crypto-armored