2018-06-30 03:29:07 +00:00
|
|
|
HKExSh TODO Ideas
|
2018-06-30 03:30:33 +00:00
|
|
|
--
|
|
|
|
|
Chaff Improvements
|
|
|
|
|
- Zipf or other distributions for chaff freq, packetsz
|
|
|
|
|
- Mimicry of hand-typed traffic for chaff on interactive sessions
|
|
|
|
|
- Client-input chaff file data (ie., Moby Dick)
|
|
|
|
|
|
2018-09-14 06:51:49 +00:00
|
|
|
KEx: Look at ECIES: https://godoc.org/github.com/bitherhq/go-bither/crypto/ecies
|
|
|
|
|
|
2018-06-30 03:30:33 +00:00
|
|
|
Architecture
|
2018-07-20 05:39:06 +00:00
|
|
|
(DONE) - Move hkexnet components other than key exchange into a proper hkex package
|
2018-06-30 03:30:33 +00:00
|
|
|
(ie., hkexsh imports hkex) - hkex should be usable for other client/svr utils,
|
|
|
|
|
ala 'hkex-netcat')
|
2018-09-14 07:40:20 +00:00
|
|
|
(parts split out into hkexnet/*, hkexsession.go)
|
2018-06-30 03:30:33 +00:00
|
|
|
- Make KEx fully-pluggable: isolate all code to do with Herradura into a
|
|
|
|
|
KEx-neutral pkg so it can be swapped out for other methods (eg., DH etc.)
|
|
|
|
|
|
|
|
|
|
Features
|
2018-09-14 07:40:20 +00:00
|
|
|
(DONE) - Support for hkcp (hkex-cp) - secure file copy protocol
|
2018-10-09 06:42:09 +00:00
|
|
|
(DONE) auth tokens to allow scripted hkexsh/hkexcp use
|
2018-06-30 03:30:33 +00:00
|
|
|
- hktun - tunnelling - multiple tunnel sessions co-existing w/shell sessions
|
|
|
|
|
|
|
|
|
|
Alternate transports for hkexsh.Conn - HTTP-mimicking traffic, ICMP, ... ?
|
|
|
|
|
(Whatever golang can support for net.Dial(), net.Accept(), io.Reader/Writer
|
|
|
|
|
should in principle be usable as substrate for hkex.Conn)
|
|
|
|
|
- hekxsh-over-ssh
|
|
|
|
|
|
