|
(Page 2 of 6) < Prev 1 2 3 4 5 6 Next > Category: Replacement logdaemon 5.7 Added 2001-10-22 This package currently supports access to the Internet through the use of a firewall system. All internal systems are hidden behind a firewall (or gateway) from the Internet. These utilities allow users from inside the network to get to archives and services on the Internet without requiring that they have an account on the gateway system. DNScache Added 2001-10-22 DNScache is a collection of Domain Name System tools. Security is one of the primary motivations for the development of dnscache; every step of the design and implementation has been carefully evaluated from a security perspective. The dnscache package has been structured to minimize the complexity of security-critical code. The package is modularized for easy review. Bug-prone coding practices and libraries have been systematically identified and rejected. It is possible to use the package as a secure alternative to BIND. msystem Added 2001-10-22 The file msystem.c contains a version of system(3), popen(3), and pclose(3) that provide considerably more security than the standard C functions. They are named msystem, mpopen, and mpclose, respectively. While I don't guarantee them to be PERFECTLY secure, they do constrain the environment of the child quite tightly, tightly enough to close the obvious holes. Osh - Operator Shell Added 2001-10-22 The Operator Shell (Osh) is a setuid root, security enhanced, restricted shell for providing fine- grain distribution of system privileges for a wide range of usages and requirements. Security SetUp II - Light Added 2001-10-22 Security SetUp is a 'security shell' for Windows 9x and Windows NT that allows you to edit the security settings build into Windows by Microsoft. Security settings can also be accessed via PolEdit.exe, however the goal of Security SetUp is to make this task simple and uncomplicated. Security SetUp is very intuitive and comes with easy to use build in help. Security Setup is shareware. Postfix Added 2001-10-22 Postfix is Wietse Venema's attempt to provide an alternative to the widely-used Sendmail program. Sendmail is responsible for delivery of billions of e-mail messages daily. A stunning number. Postfix attempts to be fast, easy to administer, and secure, while at the same time being sendmail compatible enough to not upset existing users. PortMap 4 Added 2001-10-22 Replacement portmapper with access control. Makes it somewhat harder to attack your RPC daemons, for example to steal YP password maps or NFS file handles. Must be linked against a library produced with a recent tcp wrapper release (see above). Tested with SunOS 4.1.x. Also supports HP-UX 9.0, AIX 3.x (bsdcc compiler with -D_SUN), AIX 4.x and Digital UNIX (OSF/1). If you run SunOS 4, the securelib library (see above) is better because it can also cope with direct attacks on your RPC daemons (i.e. attacks without assistance from portmap). fping Added 2001-10-22 fping is a ping(1) like program which uses the Internet Control Message Protocol (ICMP) echo request to determine if a host is up. fping is different from ping in that you can specify any number of hosts on the command line, or specify a file containing the lists of hosts to ping. Instead of trying one host until it timeouts or replies, fping will send out a ping packet and move on to the next host in a round-robin fashion. If a host replies, it is noted and removed from the list of hosts to check. If a host does not respond within a certain time limit and/or retry limit it will be considered unreachable. Srsh Simplified Restricted Shell Added 2001-10-22 Simplified Restricted Shell 0.1.3. Major purpose of this shell is to maintain `not permitted explictly then not allowed' policy on machines which provide shell access to users, which can not be trusted, while trying to keep KISS rule. Of course you should carefully check up and configure applications, which you allow your users to run, otherwise it still would be trivial to break your policy with badly configured pine or lynx for example. NSBD - Not-So-Bad Distribution Added 2001-10-22 NSBD, Not-So-Bad Distribution, is an automated Web-based distribution system that is designed for distributing free software on the internet, where users cannot trust the network and cannot entirely trust the maintainers of software. NSBD authenticates packages with GNU Privacy Guard (GnuPG) or "Pretty Good(Tm) Privacy" (PGP(Tm)) digital signatures so users can be assured that packages have not been tampered with, and it limits the maintainer to only update selected files and directories on the user's computer. NSBD's focus is on security, leaving as much control as is practical in the users' hands. Browse by category |
|
|
Privacy Statement |
