Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 29.546.655 Times

Yavipind 0.9.6

  Date Added: July 15, 2010  |  Visits: 611

Yavipind

Report Broken Link
Printer Friendly Version


Product Homepage
Download (73 downloads)



Yavipind is a secure tunnel aka 2 peers securely forwarding packets toward each other. It forwards any kind of packet (IPv4, IPv6 or other) sent over the virtual point-to-point device (e.g. tun0). It fully runs in linux userspace. yavipin has been written because i wasnt satisfied by the existing alternatives. i published some security holes i know in alternatives to bring awareness to users and help them to do a knowledgeable choise: Security analysis of VTun: This text is a security analysis of VTun. It includes a description of the security based on the source and lists the possible attacks. An attacker can modify packets, replay them, learn pattern of the plain text or easily guess low-entropy password. Security flaws in tinc: This text describes security flaws in Tinc. It includes a description of the security and lists the possible attacks. An attacker can modify packets, replay them and learn pattern of the plain text. When designing the protocol and writting the software, the author used the following criteria: the security MUST as strong as reasonably possible, yavipin SHOULD be network efficient, easy to use and install. Network efficiency: small packet overhead: 26bytes (e.g. ESP with DES+MD5 is 32byte) Packet compression: Forwarded packets may be compressed using deflate (gzip). (WORK: add stat about efficiency) NAT compatible: yavipins tunnel may be establish over NAT as all packets of a tunnel are sent over a single UDP/IPv4 connection. Moreover the peer unreachability detection periodically send packets which prevent the NAT engine from timing out the connection state. Peer unreachabilty detection: If the other peer becomes unreachable, it will be detected. It is done ala IPv6 neighbours discovery (rfc2461.7). Gracefull shutdown: If a peer purposely stops, it will notify the other which is immediatly aware of it. Usages simplicity: it works in userspace and you dont need to recompile the kernel reuse existing tools: As yavipin use a virtual device, it is possible to apply to the tunnel any tool designed for network device. For example, it is possible to set up a firewall using ipchains/netfilter or to do traffic shapping using the kernels traffic control (see tc). Securitys strength: packet security: each packet exchanged during the connection is encrypted using blowfish CFB and authenticated with HMAC-MD5 96bits. protection against packet replay: It uses strict anti-replay and no packet can be accepted twice. A eavedropper cant take a packet, keep it for a while and make it accept a second time by the destination. Efficient session key renewal: It uses hash chains for efficiency. It allows smooth key transition not to cause any packet loss during the renewal. It provides forward secrecy inside the connection. Protect DoS ala TCP syn : It uses cookie exchange (rfc2522.3) during the connection establishement. Forward secrecy : Even if the attacker cracks the box, he wont be able to decrypt network traffic older than a given delay (default 10min). The diffie-hellman private key and the session key are periodically renewed and securely erased from memory..

Requirements: No special requirements
Platforms: Linux
Keyword: Connection Nat Networking Packet Packets Possible Secure Tunnel Security System Tunnel Yavipind
Users rating: 0/10

License: Freeware Size: 88.06 KB
USER REVIEWS
More Reviews or Write Review


YAVIPIND RELATED
Business  -  Secure Electronic Mail System 0.1
The Secure Electronic Mail System will be a system for sending, receiving, and transporting over the internet of messages and documents in a manner that is secure, with complete and accurate identification of senders, receivers, and transport agents.
51.22 KB  
Security  -  Yavipind 0.9.6
Yavipind is a secure tunnel aka 2 peers securely forwarding packets toward each other. It forwards any kind of packet (IPv4, IPv6 or other) sent over the virtual point-to-point device (e.g. tun0). It fully runs in linux userspace. Features:Network...
 
Business  -  RDP Remote Desktop Connection 1.1.0-beta1+ios4+ts2
Thinstuff Remote Desktop Connection (RDC) is a fast and secure application to access your desktop from anywhere. You can simply use your iOS device to start all your applications like Word, Outlook, Adobe Photoshop, games or any other installed...
6.1 MB  
Utilities  -  Webmin Usermonitor 0.12a
Webmin Usermonitor is a Webmin module that allows you to view all connection based on Telnet / SSH and Samba to your System. This module will be able to kill the connection or send a message to the user, who use it.. gehrig@l dot net - The...
19.46 KB  
Utilities  -  Thug - Secured Network File System 0.28
Thug - Secure Network File System. Thug is network file system that is based in the Linux Kernel but can be ported to other platforms as well. It strives for security, stability and performance.
184.32 KB  
Utilities  -  BabyWatch 1.0
Baby Watch 2.0 is a safe and secure baby monitoring system for your home. ***You must have the Baby Watch 2.0 Product and account registered to use this app*** This app will allow you to view video from your Baby Watch Monitor while on...
10.4 MB  
Communication Tools  -  1st Dialer 1.3
Cool free dialer for Windows 95/98/NT/2000 jam packed with features - automatic re-dialing, one click connection, option to automatically connect to the Internet upon system startup, "Keep alive" function, hotkeys to quickly connect/disconnect,...
320 KB  
Windows Software  -  System Maintenance 1.0.0.2544
System Maintenance is an informative application that speeds up your system by optimizing the system and deleting redundant processes, keep your system secure by detecting system updates and antivirus. System Maintenance is a comprehensive...
2.86 MB  
Utilities  -  PC Brother System Maintenance 1.0.0.2550
PC Brother System Maintenance is an informative application that speeds up your system by optimizing the system and deleting redundant processes, keep your system secure by detecting system updates and antivirus. PC Brother System Maintenance is a...
2.86 MB  
MP3 Tools  -  SecureCam 2.0.0.1
Secure Cam is the highlight of any home or business security system. Supports WebCams and DVR Muti-Input capture cards (BT848,BT878,ect). Multiplexing, Motion Detection, Image Archiving, Text Overlay, Timestamps, Image Rotating, & Flipping, ect....
338 KB  
NEW DOWNLOADS IN NETWORK & INTERNET, NETWORKING TOOLS
Network & Internet  -  Free WiFi Hotspot 3.3.1
Free WiFi Hotspot is a super easy solution to turn your laptop or notebook into a portable Wi-Fi hotspot, wirelessly sharing your internet connections like DSL, Cable, Bluetooth, Mobile Broadband Card, Dial-Up, etc. through the built-in wireless...
1.04 MB  
Network & Internet  -  Easy Uploads 1.8
Easy uploads is a file storage media streaming application designed by Filestreamers that allows you to upload, store, and stream your files from their virtually unlimited file storage server. Easy Uploads can backup,share, and stream your files...
615.97 KB  
Network & Internet  -  IPv6 CARE 3.2b
IPv6 CARE, "IPv6 Compliant Automatic Runtime Environment", is a Linux tool able to patch ipv6-agnostic programs on-the-fly ('patch' mode). It can also generate a diagnosis about the IPv6 compliance of an application ('check' mode).
409.6 KB  
Network & Internet  -  PacketFence ZEN 3.1.0
PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) system. Boosting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X...
1024 MB  
Network & Internet  -  django-dbstorage 1.3
A Django file storage backend for files in the database.
10.24 KB  
Networking Tools  -  gvrpad 0.1
gvrpad is a daemon that makes GVRP announcements of all VLAN interfaces on a FreeBSD system. GVRP is the GARP VLAN Registration Protocol, defined in IEEE 802.1Q (VLANS); GARP is the Generic Attribute Registration Protocol, defined in 802.1D...
15.36 KB  
Networking Tools  -  Cheops 0.61
Cheops is an Open Source Network User Interface. It is designed to be the network equivalent of a swiss-army knife, unifying your network utilities. Cheops is for the network what a file manager is for your filesystem..
317.44 KB  
Networking Tools  -  dynacc 0.5.0
Dynacc aims to be a Pakage which gives you control other your Internet Connection. It runs a linux router/host which provides MASQ services and HTTP proxying for a LAN. It gives you the Power to define users/groups which are allowed to make...
122.88 KB  
Networking Tools  -  ssh tunnel on demand 1.0
ssh tunnel on demand provides a script that creates an SSH tunnel on demand. ssh tunnel on demand is a script that makes it possible for a user to create an SSH tunnel to a server and connect to it without needing an account on the box or any...
13.31 KB  
Networking Tools  -  strongSwan 4.1.5
strongSwan is an OpenSource IPsec implementation for the Linux operating system. strongSwan is an OpenSource IPsec implementation for the Linux operating system. In order to have a stable IPsec platform to base our future extensions of the X.509...
1.7 MB