Re-authentication of connections
Bug #38147 reported by
gryzor
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
NuFW |
Confirmed
|
Wishlist
|
Unassigned |
Bug Description
Criticity: wishlist
It will be nice in a future branch of NuFW to have connections re-authenticated on a regular basis (one packet every N packets, or every packet with a probability of 1/N, or one packet per connection every M seconds...).
This way, stealing an established connection from an authenticated user would be broken by the firewall.
Changed in nufw: | |
status: | Unconfirmed → Confirmed |
To post a comment you must log in.
This could be implemented by using periodically hello mode to confirm the connection. But, we need to ensure that this is enough.