Switched to encrypt-then-authenticate paradigm

moxie0 / knockknock

A simple, secure, and stealthy port knocking implementation that does not use libpcap or bind to a socket interface.

http://www.thoughtcrime.org/software/knockknock/

GNU General Public License v3.0

519 stars 101 forks source link

Switched to encrypt-then-authenticate paradigm #6

Open anonion0 opened 9 years ago

anonion0 commented 9 years ago

Changed the scheme from authenticate-then-encrypt to encrypt-then-authenticate. The MAC is now computed on the current counter and the encrypted port and then appended to the ciphertext.

This patch should resolve issue #4.

copumpkin commented 8 years ago

@moxie0 are you still maintaining this project?