Displaying 2 results from an estimated 2 matches for "zkey".
Did you mean:
key
2024 Jul 07
1
Request for a Lockdown option
Steffen Nurpmeso wrote in
<20240704180538.iV4uex29 at steffen%sdaoden.eu>:
|Simon Josefsson wrote in
| <87jzi1fg24.fsf at kaka.sjd.se>:
||Jochen Bern <Jochen.Bern at binect.de> writes:
||> (And since you mention "port knocking", I'd like to repeat how fond I
||> am of upgrading that original concept to a single-packet
||> crypto-armored
2024 Jul 14
2
Request for a Lockdown option
...encrypted by X509 pubkey (base64) + LF
2. LF (gives as room to place a NUL upon receive)
3. SSH signature cipher-encrypted with password in 1. (base64) + LF
Ie after placing some SSH principals in /tmp/.Zsigs,
cd /tmp/
gcc -o ./zt ./s-port-knock-bin.c
./s-port-knock.sh create-server-key .Zkey
we can do
PORT_KNOCK_BIN=/tmp/zt ./s-port-knock.sh \
start-server -v 45045 \
/tmp/s-port-knock.sh /tmp/.Zkey-pri.pem /tmp/.Zsigs
and in another window
PORT_KNOCK_BIN=/tmp/zt ./s-port-knock.sh \
knock localhost 45045 .Zkey-pub.pem SOME-PUB-SSH-KEY
and if that key is in .Zsigs it...