< Prev 18 19 20 21 22 23 24 25 26 27 28 Next >
Category: Access Control
NorthStar is a system to track IP allocations and assign them to specific devices, owners, and locations. NorthStar can nest allocations as deep as you like and also has a user permissions system to control additions, modifications, and deletions of data.
Paranoia Iptables Firewall
Paranoia Iptables Firewall is a firewall designed specifically for standalone computers in insecure networks such as campus LANs and co-location facilities. It is modular and easy to update at runtime without the need to flush the entire firewall-ruleset. The last last update time for modules is cached, allowing altered rulesets to be reloaded easily. Portscan detection and rate-limiting SYNs are supported. A good mechanism for IP/port-based ACLs is employed. A single file listing the allowed connections for every open port/portrange is required. MAC-addresses for LAN connections can be checked against corresponding IP-addresses. Optional basic NAT support is included.
Squid is a high-performance proxy caching server for web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid supports SSL, extensive access controls, and full request logging. By using the lightweight Internet Cache Protocol, Squid caches can be arranged in a hierarchy or mesh for additional bandwidth savings. Squid consists of a main server program squid, a Domain Name System lookup program dnsserver, some optional programs for rewriting requests and performing authentication, and some management and client tools. When squid starts up, it spawns a configurable number of dns server processes, each of which can perform a single, blocking Domain Name System (DNS) lookup. This reduces the amount of time the cache waits for DNS lookups.
A very smart telnet server for windows. Only 4k, support muti-user, custom listening port, remotely terminate, run in the background, etc.
NetBIOS Enumeration Utility
Features Include: - Enumeration of account lockout threshold - Enumeration of local groups and user accounts - Enumeration of global groups and user accounts - Enumeration of shares - RestrictAnonymous bypass routine And also Password Checking: - Checks for user accounts with blank passwords - Checks for user accounts with passwords that are the same as the username in lower case
Simple Little Firewall Monitor
slfm is a simple firewall monitor that processes iptables log messages and informs the user of attempts to access unauthorized services on the machine. It also lets the user set up actions to take in response to these packets if desired using a simple but powerful expression handling system.
Linux Port/Socket Pseudo ACLs
The Linux Port/Socket Pseudo ACLs patch allows an administrator to delegate privileges for some protected network resources to non-root users. The ACLs are generally used to run untrusted or insecure applications as an unprivileged process, thereby mitigating some undiscovered denial of service or root compromise. The ACLs cover protected ports, raw sockets, and packet sockets.
HLFL (High Level Firewall Language) implements a concept where, using a specific language for a firewall, you could then translate it into a variety of formats, like cisco, ipfw, ipfilter, Linux ipfwadm, ipchains, and netfilter.
NARC (Netfilter Automatic Rules Configurator) is a free firewalling package for Netfilter/Iptables, released under the BSD license. It attempts to simplify the setup of a firewall (stateful packet filter) via the iptables tools. It is a bash shellscript that generates (hopefully) sensible and secure rules for Netfilter based on a simple configuration file. It features quick setup via a simple configuration file, connection tracking (and fragmentation reassembly), customized logging, probe detection (TCP & UDP), and much more.
proxyfloppy Linux distribution
Proxyfloppy is a floppy disk that contains a bootable Linux system with 3 different types of web proxies ( Triangleboy, Junkbuster, and SOCKS) and some added tools. The goal is to make it simple for people with an always-on Internet connection to turn their desktop into a anonymous proxy server during the time that the computer would normally go unused. The proxy defaults are very safe for your computer and the Internet as a whole. Running an anonymous web proxy is a public service for people stuck behind firewalls that limit the content they are allowed to see.
Browse by category