hyp/hypd/README.md

# hypd | Hide Your Ports Daemon

hypd is the pork knocking daemon which listens for incoming authentic knock sequences.  When it sees an authentic knock sequence, it then performs an action.

### Usage

You can use -h to get help for hypd and all its commands.  When figuring out how to do something, -h is your friend.

```bash
# Get general hypd help
./hypd -h

# Get help specific to the hypd generate command
./hypd generate -h
```

Running hypd requires generating secrets which are then shared with hyp clients.  hypd is used to generate these secrets, and it's recommended you create a directory just for hyp secrets.

```bash
# Example: create a directory named secrets
mkdir -p secrets

# Then generate a secret file in this directory
./hypd generate secret > secrets/my-first-secret
```

It's recommended you generate a secret for each trusted agent so you can granularly control revocation just by removing a secret file from the secrets directory.

Running hypd requires specifying a configuration file.  It's recommended you generate the default configuration file and then edit it afterwards.

```bash
# Create a default configuration file
./hypd generate defaultconfig > hypd.conf
```

Make sure you take the time to review the hypd.conf file and edit it to your liking, this is the most important step.  Make sure the network interface is correct, hypd will make an educated guess based on the interfaces your system has.

If you have complex requirements, you can make the successAction/timeoutAction an external shell script.  If you want to disable the timeoutAction, you can set timeoutSeconds to 0.

Once you have set your config file, you can finally run hypd.

```bash
# As root or sudo, specify the configuration file
sudo ./hypd server hypd.conf
```

If you encounter any errors while trying to run, address those.  If not, then you're now listening for incoming authentic knock sequences.  Make sure you distribute the secret to the client.
More readme content 2024-04-20 22:11:10 +00:00			`# hypd \| Hide Your Ports Daemon`
BREAKING: changes to CLI interface, moved to cobra CLI To better support configuration and user friendliness, migrated to cobra based CLI. The source tree structure has also changed to single go module, the server has been renamed hypd and client has been named hyp. The original structure came into being organically, but now that the vision is more complete it's best to make these adjustments now. 2024-04-11 03:42:38 +00:00
Better usage in hyp and hypd readme's 2024-04-21 00:31:14 +00:00			`hypd is the pork knocking daemon which listens for incoming authentic knock sequences. When it sees an authentic knock sequence, it then performs an action.`
BREAKING: changes to CLI interface, moved to cobra CLI To better support configuration and user friendliness, migrated to cobra based CLI. The source tree structure has also changed to single go module, the server has been renamed hypd and client has been named hyp. The original structure came into being organically, but now that the vision is more complete it's best to make these adjustments now. 2024-04-11 03:42:38 +00:00
			`### Usage`

Better usage in hyp and hypd readme's 2024-04-21 00:31:14 +00:00			`You can use -h to get help for hypd and all its commands. When figuring out how to do something, -h is your friend.`

			```bash
			`# Get general hypd help`
			`./hypd -h`

			`# Get help specific to the hypd generate command`
			`./hypd generate -h`
			```

More readme content 2024-04-20 22:11:10 +00:00			`Running hypd requires generating secrets which are then shared with hyp clients. hypd is used to generate these secrets, and it's recommended you create a directory just for hyp secrets.`
BREAKING: changes to CLI interface, moved to cobra CLI To better support configuration and user friendliness, migrated to cobra based CLI. The source tree structure has also changed to single go module, the server has been renamed hypd and client has been named hyp. The original structure came into being organically, but now that the vision is more complete it's best to make these adjustments now. 2024-04-11 03:42:38 +00:00
			```bash
More readme content 2024-04-20 22:11:10 +00:00			`# Example: create a directory named secrets`
			`mkdir -p secrets`

			`# Then generate a secret file in this directory`
			`./hypd generate secret > secrets/my-first-secret`
			```

			`It's recommended you generate a secret for each trusted agent so you can granularly control revocation just by removing a secret file from the secrets directory.`

			`Running hypd requires specifying a configuration file. It's recommended you generate the default configuration file and then edit it afterwards.`

			```bash
			`# Create a default configuration file`
			`./hypd generate defaultconfig > hypd.conf`
			```

QoL feature - select best interface on current system When generating a default config instead of using a canned value like "eth0", hypd will isntead look at what interfaces the system has and make a best guess based on progressively narrowing filters. 2024-04-21 01:25:15 +00:00			`Make sure you take the time to review the hypd.conf file and edit it to your liking, this is the most important step. Make sure the network interface is correct, hypd will make an educated guess based on the interfaces your system has.`

			`If you have complex requirements, you can make the successAction/timeoutAction an external shell script. If you want to disable the timeoutAction, you can set timeoutSeconds to 0.`
More readme content 2024-04-20 22:11:10 +00:00
			`Once you have set your config file, you can finally run hypd.`

			```bash
			`# As root or sudo, specify the configuration file`
			`sudo ./hypd server hypd.conf`
Better usage in hyp and hypd readme's 2024-04-21 00:31:14 +00:00			```

			`If you encounter any errors while trying to run, address those. If not, then you're now listening for incoming authentic knock sequences. Make sure you distribute the secret to the client.`