1 files changed, 11 insertions, 0 deletions

diff --git a/security/knock/pkg-descr b/security/knock/pkg-descr
new file mode 100644
index 000000000000..b5d0765e7211
--- /dev/null
+++ b/security/knock/pkg-descr
@@ -0,0 +1,11 @@
+knockd is a port-knock server. It listens to all traffic on an ethernet
+(or PPP) interface, looking for special "knock" sequences of port-hits.
+
+A client makes these port-hits by sending a TCP (or UDP) packet to a
+port on the server. This port need not be open -- since knockd listens
+at the link-layer level, it sees all traffic even if it's destined for
+a closed port. When the server detects a specific sequence of port-hits
+port-hits, it runs a command defined in its configuration file. This
+can be used to open up holes in a firewall for quick access. 
+
+WWW: http://www.zeroflux.org/cgi-bin/cvstrac/knock/wiki/