Top : Computers : Software : Operating Systems : Unix : Security :
Admin Tools-Software
Websites
Strong cryptographic software, libraries, and information about cryptography, data security, and privacy.
site exerpt
Welcome to Cryptography.org Archives are being restructured into an international (as much as law allows) open source cryptography resource. This is because the law has changed since the reason for the existence of this site came about, and because the operator of this...Tools such as tcpdump and traceroute.
site exerpt
LBNL's Network Research Group Welcome to the home page of the Network Research Group (NRG) of the Information and Computing Sciences Division (ICSD) at Lawrence Berkeley National Laboratory (LBNL) in Berkeley, California. Past and Present Group Staff Sally Floyd (now at ICIR) Craig Leres...(Security Administrator's Integrated Network Tool) Scans systems and networks and reports potential vulnerabilities.
http://www.wwdsi.com/saint/
Automate Sun's Patchdiag tool with a command-line or X-Windows interface.
http://www.georgetown.edu/reillyb/gasp
A replacement for the unix crypt, using several block algorithms in several modes like cbc, and cfb.
http://hq.hellug.gr/~mcrypt
Run selected commands as root, with the users' own password. Allows the administrator to grant limited root privileges to a subset of users, without giving out the root password.
site exerpt
Sudo Main Page The current version is sudo 1.6.8p12, released on November 8, 2005. Please note: versions of Sudo prior to 1.6.8p9 contain a race condition that could allow a user with sudo privileges to run unauthorized commands (CVE 2005-1993 Sudo is free...Daemon implementing IDENT protocol, it can be used to identify the user who initiated a TCP/IP connection
ftp://ftp.lysator.liu.se/pub/ident/servers/
VXE defines restrictions for filesystem and all syscalls. More convenient than chroot(); (free for non-commercial use).
http://www.intes.odessa.ua/vxe
Changing passwords safely across the net.
http://www.brunel.ac.uk/depts/cc...ers/netpassword-paper/paper.html
A pair of Perl scripts that provide an audited root shell using sudo and script(1). Tarballs, RPM's and individual components.
http://www.egbok.com/sudoscript
Open source implementation of SSH1 and SSH2 protocols. Ported from OpenBSD by the OpenSSH portability team.
site exerpt
OpenSSH Portable Release for Linux/Solaris/etc H development produces a very small, secure, and easy to maintain version for the OpenBSD project. The OpenSSH Portability Team takes that pure version and adds portability code so that OpenSSH can run on many other operating systems (Unfortunately, in...Drop-in Sendmail replacement by Wietse Venema. Offers several features that make it difficult to crack.
site exerpt
The Postfix Home Page All programmers are optimists Frederick P. Brooks, Jr. First of all, thank you for your interest in the Postfix project. What is Postfix? It is Wietse Venema's mailer that started life as an alternative to the widely-used Sendmail program. Postfix...Open source version of the original Unix file integrity scanner. Calculates and stores signatures of file permissions, ownership and contents. Scans the same files later, detecting changes. This open source version is targeted at Linux systems.
http://www.tripwire.org
Efficient stealth port scanner. Downloads, e-mail lists, news.
http://www.nmap.org/
The Coroner's Toolkit (TCT) provides post-break-in data collection that could be useful in determining what happened. Less polished that the authors (Dan Farmer and Wietse Venema) usual work, the toolkit offers a patch-work of tools that help exhume interesting stuff from violated systems. Should be installed and examined before a break-in happens!
site exerpt
The Coroner's Toolkit (TCT) T is a collection of programs by Dan Farmer and Wietse Venema for a post-mortem analysis of a UNIX system after break-in. The software was presented first in a Computer Forensics Analysis class in August 1999 (handouts can be found...lsof is a tool for examining I/O channels open on your Unix system. These can include files, FIFOs and network sockets. This information can be extremely useful for security and a variety of other purposes. Works on most Unix-like systems.
site exerpt
freshmeat.net: Project details for lsof Search for in projects articles comments web results by YAHOO! search Section Main Unix Handhelds Mac OS X Themes login register recover password [Project] add release add branch add screenshot broken links change owner email subscribers update project update branch...SUS is a utility to allow a user (typically a system administrator) to run a single command as the super user.
site exerpt
The SUS Home Page S is a utility to allow a user (typically a system administrator) to run a single command as the super user. SUS reads a configuration file which determines if the user may execute the command or not. Some of the...Allows improved monitoring and alerting based on the contents of system logs.
site exerpt
DFN-CERT: Logsurfer Homepage The program logsurfer was designed to monitor any text-based logfiles on your system in realtime. The large amount of loginformation collected (like all messages handled by the syslog-daemon or logfiles from your information services FTP, WWW etc makes it nearly...Use Secure4Privilege for complete access control to commands and scripts without giving out the root password.
site exerpt
S4Software Security; Suguard access control: Unix Security;Unix Administration, Unix and NT Account Synchronization, User Account Administration, User Account Management, User Security, Intrusion Detection and Password Synchronization Privilege is a software tool designed to address security, program use, and layered management. Secure4Privilege adds flexible and secure layered management capabilities to UNIX systems for control of local and distributed applications, programs, and scripts. The Secure4Privilege command profile describes...