[aklug] Re: Port knocking implementations...

Ok... starting at the beginning.

I downloaded the src.rpm rather than a distribution-specific rpm because =
I
couldn't fine one for fedora.

Untarred and "rpm -Uvh" fine into it's own directory.

When I tried to "./configure", the output looked normal:

[root@ravn knock-0.5]# ./configure
checking for gcc... gcc
checking for C compiler default output file name... a.out
checking whether the C compiler works... yes
checking whether we are cross compiling... no
checking for suffix of executables...
checking for suffix of object files... o
checking whether we are using the GNU C compiler... yes
checking whether gcc accepts -g... yes
checking for gcc option to accept ANSI C... none needed
checking for g++... g++
checking whether we are using the GNU C++ compiler... yes
checking whether g++ accepts -g... yes
checking for a BSD-compatible install... /usr/bin/install -c
checking for pcap_open_live in -lpcap... no
checking how to run the C preprocessor... gcc -E
checking for egrep... grep -E
checking for ANSI C header files... yes
checking for sys/wait.h that is POSIX.1 compatible... yes
checking for sys/types.h... yes
checking for sys/stat.h... yes
checking for stdlib.h... yes
checking for string.h... yes
checking for memory.h... yes
checking for strings.h... yes
checking for inttypes.h... yes
checking for stdint.h... yes
checking for unistd.h... yes
checking arpa/inet.h usability... yes
checking arpa/inet.h presence... yes
checking for arpa/inet.h... yes
checking pcap.h usability... no
checking pcap.h presence... no
checking for pcap.h... no
checking netdb.h usability... yes
checking netdb.h presence... yes
checking for netdb.h... yes
checking netinet/in.h usability... yes
checking netinet/in.h presence... yes
checking for netinet/in.h... yes
checking for stdlib.h... (cached) yes
checking for string.h... (cached) yes
checking sys/socket.h usability... yes
checking sys/socket.h presence... yes
checking for sys/socket.h... yes
checking syslog.h usability... yes
checking syslog.h presence... yes
checking for syslog.h... yes
checking for unistd.h... (cached) yes
checking for an ANSI C-conforming const... yes
checking for size_t... yes
checking whether struct tm is in sys/time.h or time.h... time.h
checking for pid_t... yes
checking for unistd.h... (cached) yes
checking vfork.h usability... no
checking vfork.h presence... no
checking for vfork.h... no
checking for fork... yes
checking for vfork... yes
checking for working fork... yes
checking for working vfork... (cached) yes
checking for stdlib.h... (cached) yes
checking for GNU libc compatible malloc... yes
checking return type of signal handlers... void
checking for vprintf... yes
checking for _doprnt... no
checking for inet_ntoa... yes
checking for memmove... yes
checking for strcasecmp... yes
checking for strdup... yes
checking for strstr... yes
configure: creating ./config.status
config.status: creating Makefile
config.status: creating config.h
config.status: config.h is unchanged

When I ran "make" in the base directory, this is the output.

[root@ravn knock-0.5]# make
gcc -g -O2 -g -Wall -pedantic -fno-exceptions -D_GNU_SOURCE -I. -o
src/knockd.o -c src/knockd.c
src/knockd.c:47:18: error: pcap.h: No such file or directory
src/knockd.c:121: warning: =E2struct pcap_pkthdr=E2 declared inside =
parameter
list
src/knockd.c:121: warning: its scope is only this definition or =
declaration,
which is probably not what you want
src/knockd.c:123: error: expected =E2=3D=E2, =E2,=E2, =E2;=E2, =E2asm=E2 =
or =E2__attribute__=E2
before =E2*=E2 token
src/knockd.c: In function =E2main=E2:
src/knockd.c:140: error: =E2PCAP_ERRBUF_SIZE=E2 undeclared (first use in =
this
function)
src/knockd.c:140: error: (Each undeclared identifier is reported only =
once
src/knockd.c:140: error: for each function it appears in.)
src/knockd.c:196: error: =E2cap=E2 undeclared (first use in this =
function)
src/knockd.c:196: warning: implicit declaration of function =
=E2pcap_open_live=E2
src/knockd.c:204: warning: implicit declaration of function =
=E2pcap_datalink=E2
src/knockd.c:206: error: =E2DLT_EN10MB=E2 undeclared (first use in this
function)
src/knockd.c:209: error: =E2DLT_LINUX_SLL=E2 undeclared (first use in =
this
function)
src/knockd.c:212: error: =E2DLT_RAW=E2 undeclared (first use in this =
function)
src/knockd.c:256: warning: implicit declaration of function =
=E2pcap_dispatch=E2
src/knockd.c:259: warning: implicit declaration of function =
=E2pcap_perror=E2
src/knockd.c:140: warning: unused variable =E2pcapErr=E2
src/knockd.c: In function =E2cleanup=E2:
src/knockd.c:346: warning: implicit declaration of function =
=E2pcap_close=E2
src/knockd.c:346: error: =E2cap=E2 undeclared (first use in this =
function)
src/knockd.c: In function =E2generate_pcap_filter=E2:
src/knockd.c:783: error: storage size of =E2bpf_prog=E2 isn=E2t known
src/knockd.c:972: warning: implicit declaration of function =
=E2pcap_compile=E2
src/knockd.c:972: error: =E2cap=E2 undeclared (first use in this =
function)
src/knockd.c:976: warning: implicit declaration of function =
=E2pcap_setfilter=E2
src/knockd.c:980: warning: implicit declaration of function =
=E2pcap_freecode=E2
src/knockd.c:783: warning: unused variable =E2bpf_prog=E2
src/knockd.c: At top level:
src/knockd.c:1161: warning: =E2struct pcap_pkthdr=E2 declared inside =
parameter
list
src/knockd.c:1162: error: conflicting types for =E2sniff=E2
src/knockd.c:121: error: previous declaration of =E2sniff=E2 was here
src/knockd.c: In function =E2sniff=E2:
src/knockd.c:1174: error: dereferencing pointer to incomplete type
src/knockd.c:1181: error: =E2DLT_EN10MB=E2 undeclared (first use in this
function)
src/knockd.c:1187: error: =E2DLT_LINUX_SLL=E2 undeclared (first use in =
this
function)
src/knockd.c:1189: error: =E2DLT_RAW=E2 undeclared (first use in this =
function)
src/knockd.c:1245: error: dereferencing pointer to incomplete type
make: *** [src/knockd.o] Error 1

This appears to fail. I'm operating on the assumption that I have to
"configure", then "make", then "make install" for the knockd to be =
properly
installed on my system. I may be way out in left field.

That is pretty much where I stopped and started working on a logging =
issue
I'm having....

Any advise on where to go on this?

--Craig

-----Original Message-----
From: aklug-bounce@aklug.org [mailto:aklug-bounce@aklug.org] On Behalf =
Of
barsalou
Sent: Wednesday, January 02, 2008 10:54 AM
To: Craig Hasund
Cc: aklug@aklug.org
Subject: [aklug] Re: Port knocking implementations...

Having not played with this before, I'm probably not going to be much=20
help, but if you post the exact problem, I'd be interested in hunting=20
this down with you.

Mike B.

Quoting Craig Hasund <hasundc@arctic.net>:

> I am running Fedora 8 (with iptables) and want to use port knocking =
for my
> IMAP client connections rather than a static firewall configuration. =
It
> would be nice to accept ssh on a conditional "port-knocking" basis as
well.
>
>
> Does anyone have any experience using a port-knocking server and a
> windows-based port-knocking client?
>
>
>
> I'm playing with knockd right now, but it doesn't seem to like my =
system
> setup and won't install correctly.
>
>
>
> Any advise or direction would be appreciated.
>
>
>
> -- Craig Hasund
>
>
>
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org>
> with 'unsubscribe' in the message body.
>

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Thu Jan 3 20:33:57 2008