Skip to content

To Do List

Jump to bottom Edit New page
Andrew Mason edited this page Apr 21, 2015 · 7 revisions

So we don't forget this after falling asleep:

  • Use catch to eliminate traceback on SIGINT.
  • Port knocking as a stretch still.
  • Test work -- clean the shit up.
  • ICMP messages - block pings, potentially outgoing ICMP responses.
  • Combination IP and port filters.
  • Some default configurations.
  • How to handle invalid TCP state transitions?
  • NMap foiling:
    • SCTP?
    • UDP rules to drop all but #53.
    • Stateful rules to detect mapping.
  • CIDR IP's?

Thoughts on presentation topic order, by Andrew:

  • Basic idea of the project.
  • Overview of iptables? Are there people in the class that don't know what this is?
  • Brief discussion of Jeff's beautiful datagram parser.
  • Design of the basic (read: single-process, without the craziness of the multi-process egress filtering) architecture of pywall; plus how the Rule interface is defined and show some simple rules.
  • Discuss the egress filtering and the actual architecture of the Great PyWall
  • Any other stretch features we knock out this morning.
Add a custom footer
Add a custom sidebar
Clone this wiki locally