Skip to content

Commit

Permalink
security/knock/pkg-descr: correction, changes
Browse files Browse the repository at this point in the history
De-duplicate 'port-hits port-hits'.

Whilst here, reword things slightly.
  • Loading branch information
grahamperrin committed Sep 16, 2023
1 parent 3e1ce28 commit 2ff6be0
Showing 1 changed file with 8 additions and 8 deletions.
16 changes: 8 additions & 8 deletions security/knock/pkg-descr
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
knockd is a port-knock server. It listens to all traffic on an ethernet
(or PPP) interface, looking for special "knock" sequences of port-hits.
knockd is a port-knock server. It monitors all traffic on an Ethernet (or PPP)
interface for special "knock" sequences of port-hits.

A client makes these port-hits by sending a TCP (or UDP) packet to a
port on the server. This port need not be open -- since knockd listens
at the link-layer level, it sees all traffic even if it's destined for
a closed port. When the server detects a specific sequence of port-hits
port-hits, it runs a command defined in its configuration file. This
can be used to open up holes in a firewall for quick access.
A client makes these port-hits by sending a TCP (or UDP) packet to a port on
the server. The port need not be open -- since knockd monitors at the
link-layer level, it detects all traffic, even if destined for a closed port.
When the server detects a specific sequence of port-hits, it runs a command
defined in its configuration file. The command can be used to open holes in a
firewall, for quick access.

0 comments on commit 2ff6be0

Please sign in to comment.