All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Knocker: Self-Hosted Knock-Based Access Control System for Homelab Security

By

xlmnxp

7mo ago· 6 min readenCode
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

Pulled from the oven just right. Trustworthy, fact-dense, deeply satisfying.

Score100TypenewsSentimentneutral

Summary

Knocker is a self-hosted, knock-based access control system designed for homelab environments that provides single-packet authorization (SPA) through HTTP. It allows users to keep services private and open them on-demand only for authorized IP addresses, functioning as authentication for reverse proxies like Caddy or at the firewall level with FirewallD integration. The system includes web, CLI, and Android clients, enabling secure access to homelab services without requiring persistent VPN connections while minimizing public-facing attack surfaces.

Key quotes

· 4 pulled
Knocker is a configurable, and self-hosted service that provides an HTTP based "knock-knock" single-packet authorization (SPA) gateway for your Homelab
It allows you to keep your services completely private, opening them up on-demand only for authorized IP addresses
This is ideal for homelab environments where you want to expose services to the internet without a persistent VPN connection, while minimizing your public-facing attack surface
it can be used as authentication for your reverse proxy like Caddy, or even on the firewall level using the FirewallD integration
Snippet from the RSS feed
Knocker, a knock based access control system for your homelab - FarisZR/knocker

You might also wanna read

Defending a Self-Hosted Git Forge Against AI Scraping Attacks

The article details a personal experience where the author discovered their self-hosted Git forge (Forgejo) was being overwhelmed by AI scra

vulpinecitrus.info·5mo ago

How to Self-Host a Bluesky Personal Data Server on Ubuntu VPS

This article provides a step-by-step technical guide for self-hosting a Bluesky Personal Data Server (PDS) on an Ubuntu VPS. It explains wha

blog.radwebhosting.com·10h ago

North Korean Chollima Group Targets PHP Developers via Malicious Packagist Package

A malicious obfuscated JavaScript payload was discovered appended to tailwind.js in the Packagist development version dev-drewroberts/featur

socket.dev·10h ago

How to Deploy Self-Hosted OpenClaw AI Agent on a Debian VPS

This article provides a step-by-step guide for deploying OpenClaw, an open-source personal AI agent, on a Debian VPS server. It covers the s

blog.radwebhosting.com·12h ago

Microsoft uncovers supply chain attack: Compromised @antv npm packages steal CI/CD credentials via Mini Shai-Hulud malware

Microsoft has identified an active supply chain attack targeting the @antv npm package ecosystem. A threat actor compromised an @antv mainta

microsoft.com·23h ago

npm malware targeting Claude users leaks own GitHub token, reaches 676 downloads

An npm package called "mouse5212-super-formatter" targeting Claude users acted as information-stealing malware, reaching 676 downloads befor

theregister.com·2d ago