pknock: add Kconfig file

author Jan Engelhardt <jengelh@medozas.de>

Fri, 9 Oct 2009 16:11:49 +0000 (18:11 +0200)

committer Jan Engelhardt <jengelh@medozas.de>

Fri, 9 Oct 2009 16:11:49 +0000 (18:11 +0200)
author Jan Engelhardt <jengelh@medozas.de>
Fri, 9 Oct 2009 16:11:49 +0000 (18:11 +0200)
committer Jan Engelhardt <jengelh@medozas.de>
Fri, 9 Oct 2009 16:11:49 +0000 (18:11 +0200)
diff --git a/extensions/pknock/xt_pknock.Kconfig b/extensions/pknock/xt_pknock.Kconfig

new file mode 100644 (file)

index 0000000..7969c38
--- /dev/null
+++ b/extensions/pknock/xt_pknock.Kconfig
@@ -0,0 +1,13 @@
+config NETFILTER_XT_MATCH_PKNOCK
+       tristate "Port knocking match support"
+       depends on NETFILTER_XTABLES && CONNECTOR
+       ---help---
+       pknock match implements so-called Port Knocking, a stealthy system
+       for network authentication: client sends packets to selected, closed
+       ports on target machine in a specific sequence. The target machine
+       (which has pknock match rule set up) then decides whether to
+       unblock or block (again) its protected port with listening
+       service. This can be, for instance, used to avoid brute force attacks
+       on ssh or ftp services.
+
+       For more informations go to: http://portknocko.berlios.de/
author	Jan Engelhardt <jengelh@medozas.de>
	Fri, 9 Oct 2009 16:11:49 +0000 (18:11 +0200)
committer	Jan Engelhardt <jengelh@medozas.de>
	Fri, 9 Oct 2009 16:11:49 +0000 (18:11 +0200)