On Jan 09, 2013, Franck Joncourt wrote: > Hi Michael,
Hello Franck, > I have played with fwknop on android and it works fine. Here is a part of my > iptables ruleset dump after sending multiple packets > > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764373 */ > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764374 */ > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764374 */ > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764374 */ > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764374 */ > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764374 */ > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764374 */ > 0 0 ACCEPT tcp -- any any 192.168.1.14 \ > anywhere tcp dpt:ssh /* _exp_1357764375 */ > > Do you think it would be a good idea to use the check option (-C) from > iptables > to make sure a rule does not already exist? However, I do see any way to > avoid > adding the same access rule with different timestamps. Sure, I think that's a great idea to use the -C option before adding a duplicate rule. As you point out, rules with different timestamps would not be handled by this, but I'd say that's ok - one will just expire a little later. I'm gearing up for HMAC work in the next fwknop release (most of the HMAC code is already done, but merging in 2.0.4 plus a few other things will take some time), and your idea above should be added as well. Damien has suggested using the ticketing system built into Github for better project tracking along with having a more well-defined roadmap, and I completely agree that we need to do this too. Thanks, --Mike > Regards, > > -- > Franck > > ------------------------------------------------------------------------------ > Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, > MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current > with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft > MVPs and experts. ON SALE this month only -- learn more at: > http://p.sf.net/sfu/learnmore_122712 > _______________________________________________ > Fwknop-discuss mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/fwknop-discuss ------------------------------------------------------------------------------ Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft MVPs and experts. ON SALE this month only -- learn more at: http://p.sf.net/sfu/learnmore_122712 _______________________________________________ Fwknop-discuss mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/fwknop-discuss
