Designing a good remote access solution can be fun, however daunting and
complex your access needs might be! Solutions might seem limited, however,
they do not have to be difficult to implement or limited because they are
FOSS>. These two are very easily configured and powerful in an enterprise
environment.
Feel free to pipe up and comment about your favorite solutions.
1) U N T A N G L E
A commercial grade Open Source alternative to Sonic Wall downloaded as an
iso.
[Credit: Demonstration thanks to John Wiegley CTO for BizCard.com for his
very well configured security solution running Untangle.]
http://www.untangle.com/
Untangle has other great products:
http://www.untangle.com/Product-Overview
2) S P A via fwknop
Single port authentication systems provide another key based exchange for
access on any port. Conventional woodpecker style port knocking is open to
sniffing and brute force knocking attacks. Sending an encrypted packet with
an access request to the server is safer and more more modern, handled via
Firewall Knock Operator. fwknop stands for "Firewall Knock Operator" and is
a piece of software that was released at the DEFCON
12<
http://www.defcon.org/html/defcon-12/dc-12-index.html>conference in
July, 2004 in Las Vegas.
http://www.cipherdyne.org/fwknop/download/
http://www.net-security.org/secworld.php?id=7481 1.9.11 just released.
www.obnosis.com (503)754-4452
"There is no security on this earth, there is only opportunity." -General
Douglas MacArthur
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss