Section: .. / linux / security /
| /// File Name: |
grsecurity-2.1.8-2.4.32-20060121164..> |
Description:
|
A new grsecurity patch has been released for the 2.4.32 Linux kernel series. It implements a detection/prevention/containment strategy. It prevents most forms of address space modification, confines programs via its Role-Based Access Control system, hardens syscalls, provides full-featured auditing, and implements many of the OpenBSD randomness features. It was written for performance, ease-of-use, and security. The RBAC system has an intelligent learning mode that can generate least privilege policies for the entire system with no configuration. All of grsecurity supports a feature that logs the IP of the attacker that causes an alert or audit.
| | Author: | spender | | Homepage: | http://www.grsecurity.net | | File Size: | 151780 | | Last Modified: | Jan 27 15:07:40 2006 |
| MD5 Checksum: | 77e5fd7d8bb0eeb8ed8e9d0a4bff5cde |
|
| /// File Name: |
ZoneMinder-1.22.0.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | Changes: | This release features some major new features as well as considerable architectural rework. | | File Size: | 1178414 | | Last Modified: | Jan 21 15:36:20 2006 |
| MD5 Checksum: | f5f9e029f1b7c96bcfe93c49697a60c3 |
|
| /// File Name: |
multiadm-1.0.3.tbz2 |
Description:
|
The MultiAdmin security framework kernel module provides a means to have multiple root users with unique UIDs. This bypasses collation order problems with NSCD, allows you to have files with unique owners, and allows you to track the quota usage for every real user. It also implements a sub-admin, a partially restricted root user who has full read-only access to most subsystems, but write rights only to a limited subset, for example writing to files or killing processes only of certain users.
| | Author: | Jan Engelhardt | | Homepage: | http://alphagate.hopto.org/multiadm/ | | File Size: | 42378 | | Last Modified: | Dec 28 19:05:40 2005 |
| MD5 Checksum: | f014a4fed15e3e18ac3607ea854f01c4 |
|
| /// File Name: |
listener-1.7.2.tgz |
Description:
|
This program listens for sound. If it detects any, it starts recording automatically and also automatically stops when things become silent again.
| | Author: | Folkert van Heusden | | Homepage: | http://www.vanheusden.com/listener/ | | Changes: | Added one-shot recording. Can now write its pid to a file when running in daemon mode. | | File Size: | 81920 | | Last Modified: | Dec 28 18:52:53 2005 |
| MD5 Checksum: | 98d73f957d902dd17e7b4d334dcdeaa0 |
|
| /// File Name: |
linux-2.4.32-ow1.tar.gz |
Description:
|
The Openwall Linux kernel patch is a collection of security hardening features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.
| | Author: | Solar Designer | | Homepage: | http://www.openwall.com/linux | | Changes: | Minimal changes. | | File Size: | 35142 | | Last Modified: | Dec 3 01:49:51 2005 |
| MD5 Checksum: | df21f0f080b6f9a612a3318fc0a28218 |
|
| /// File Name: |
psad-1.4.4.tar.gz |
Description:
|
Port Scan Attack Detector (psad) is a collection of four lightweight daemons written in Perl and C that are designed to work with Linux firewalling code (iptables and ipchains) to detect port scans. It features a set of highly configurable danger thresholds (with sensible defaults provided), verbose alert messages that include the source, destination, scanned port range, begin and end times, TCP flags and corresponding nmap options, email alerting, and automatic blocking of offending IP addresses via dynamic configuration of ipchains/iptables firewall rulesets. In addition, for the 2.4.x kernels psad incorporates many of the TCP, UDP, and ICMP signatures included in Snort to detect highly suspect scans for various backdoor programs (e.g. EvilFTP, GirlFriend, SubSeven), DDoS tools (mstream, shaft), and advanced port scans (syn, fin, Xmas) which are easily leveraged against a machine via nmap. Psad also uses packet TTL, IP id, TOS, and TCP window sizes to passively fingerprint the remote operating system from which scans originate. Changelog available here.
| | Homepage: | http://www.cipherdyne.org | | Changes: | Bug fixes and some cool new features. | | File Size: | 671256 | | Last Modified: | Dec 1 01:48:20 2005 |
| MD5 Checksum: | 6cae2812e016ebb0c30a4815844059c8 |
|
| /// File Name: |
zm-1.21.4.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | Changes: | A whole bunch of improvements and fixes. | | File Size: | 934602 | | Last Modified: | Nov 11 22:33:16 2005 |
| MD5 Checksum: | e02b8244fa8fec93d187f1e616ce4ec8 |
|
| /// File Name: |
pam_p11-0.1.2.tar.gz |
Description:
|
Pam_p11 is a pluggable authentication module (PAM) package for using cryptographic tokens such as smart cards and USB crypto tokens for authentication. Pam_p11 is very simple, as it has no config file, no options other than the PKCS#11 module file, and does not know about certificate chains, certificate authorities, revocation lists, or OCSP. There is one module that uses the $HOME/.eid/authorized_certificates file (like the old pam_opensc did) and one module that uses the $HOME/.ssh/authorized_keys file (like ssh does).
| | Homepage: | http://www.opensc-project.org/pam_p11/ | | File Size: | 313774 | | Last Modified: | Nov 2 21:16:21 2005 |
| MD5 Checksum: | de550f9d7cf921a7b8e35901e6bbfa25 |
|
| /// File Name: |
StMichael_LKM-0.12.tar.gz |
Description:
|
StMichael is a LKM that attempts to provide a level of protection against kernel-module rootkits. StMichael is designed to be loaded early in the system boot process, and is intended to be present and running on its host system prior to the introduction of malicious kernel modules. StMichael provides this protection by monitoring various portions of the kernel, and optionally the entire kernel text itself, for modifications that may indicate the presence of a malicious kernel module. If rootkit-like activity is detected, StMichael will attempt to recover the kernel's integrity by rolling back the changes made to a previously known-good state.
| | Author: | Rodrigo Rubira Branco | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | StJude/StMichael now has Rodrigo Rubira Branco as its new maintainer. This release fixes compilation problems with 2.4 kernels and also support MBR checksums. | | File Size: | 40651 | | Last Modified: | Oct 27 01:32:17 2005 |
| MD5 Checksum: | f313063dc584e55fdafe538507128366 |
|
| /// File Name: |
devsec-3.0.6.tar.gz |
Description:
|
Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk).
| | Author: | p3r | | Homepage: | http://devsec.sourceforge.net/ | | Changes: | Updated to work with more systems. Bug fixes. | | File Size: | 10290636 | | Last Modified: | Oct 26 12:34:45 2005 |
| MD5 Checksum: | 539db08716f0237c8a8c06c25b368b4b |
|
| /// File Name: |
pam_usb-0.3.3.tar.gz |
Description:
|
pam_usb is a PAM module that enables authentication using a USB storage device through DSA private/public keys. It can also work with floppy disks, CD-ROMs, or any kind of mountable device.
| | Author: | Andrea Luzzardi | | Homepage: | http://www.sig11.org/~al/pam_usb/ | | Changes: | The option keypath is now split into local_keypath and device_keypath. Fixed a bug that occurred when the TTY entry was empty. Various other fixes and enhancements. | | File Size: | 27211 | | Last Modified: | Oct 26 12:12:50 2005 |
| MD5 Checksum: | 45e73035b706ff6dd20d002210bf0cb3 |
|
| /// File Name: |
rsbac-admin-1.2.5.tar.bz2 |
Description:
|
Admin tools for the Rule Set Based Access Control (RSBAC) system. Includes log viewers, special patches, nss and pam related functionality, and more.
| | Homepage: | http://www.rsbac.org | | File Size: | 279064 | | Last Modified: | Sep 27 18:54:58 2005 |
| MD5 Checksum: | 12560426f1724b5b140e661547356260 |
|
| /// File Name: |
rsbac-common-1.2.5.tar.bz2 |
Description:
|
Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
| | Homepage: | http://www.rsbac.org | | Changes: | Huge amount of bug fixes. | | File Size: | 349424 | | Last Modified: | Sep 27 18:53:35 2005 |
| MD5 Checksum: | cb643700dafea41bbd7c2a2e3a1b0df3 |
|
| /// File Name: |
sysmask-1.04.tgz |
Description:
|
Sysmask is a security package for Linux systems that can prevent arbitrary malicious codes from causing permanent damage. It protects the system against daemon exploits and user accounts against viruses and worms, whether known or unknown, without requiring the recompilation of existing software.
| | Author: | XIAO Gang | | Homepage: | http://wims.unice.fr/sysmask/doc/index.html | | Changes: | Some minor fixes and improvements. | | File Size: | 177317 | | Last Modified: | Aug 26 02:05:33 2005 |
| MD5 Checksum: | 180cca0394264f471ca36e24b8e5197b |
|
| /// File Name: |
sysmask-1.02.tgz |
Description:
|
Sysmask is a security package for Linux systems that can prevent arbitrary malicious codes from causing permanent damage. It protects the system against daemon exploits and user accounts against viruses and worms, whether known or unknown, without requiring the recompilation of existing software.
| | Author: | XIAO Gang | | Homepage: | http://wims.unice.fr/sysmask/doc/index.html | | File Size: | 176924 | | Last Modified: | Aug 24 03:30:02 2005 |
| MD5 Checksum: | b4c9d16ad0aa5ead3e5bb1e4ff383db3 |
|
| /// File Name: |
devsec-3.0.5.tar.gz |
Description:
|
Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk).
| | Author: | p3r | | Homepage: | http://devsec.sourceforge.net/ | | Changes: | Fixed build errors and changed some system configuration dialog. | | File Size: | 8589567 | | Last Modified: | Aug 7 03:20:23 2005 |
| MD5 Checksum: | 22c6a8d5dc40d9b926bfcbec81365c29 |
|
| /// File Name: |
devsec-3.0.4.tar.gz |
Description:
|
Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk).
| | Author: | p3r | | Homepage: | http://devsec.sourceforge.net/ | | Changes: | Fix major foobar with respect to undefined reference to ReadConfig in web_interface. | | File Size: | 8483987 | | Last Modified: | Aug 5 04:26:18 2005 |
| MD5 Checksum: | ac7f9f0482b05b51a304d9fda4b43796 |
|
| /// File Name: |
devsec-3.0.0.tar.gz |
Description:
|
Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk).
| | Author: | p3r | | Homepage: | http://devsec.sourceforge.net/ | | File Size: | 8195588 | | Last Modified: | Jul 28 03:28:22 2005 |
| MD5 Checksum: | 0205b0eb774c3ee1dc87da04d34c26cb |
|
| /// File Name: |
zm-1.21.3.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | Changes: | Additional bug fix release. | | File Size: | 875973 | | Last Modified: | Jul 15 01:08:54 2005 |
| MD5 Checksum: | 59e2be0fe4c5a75c2045484545ad3f43 |
|
| /// File Name: |
zm-1.21.2.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | Changes: | Minor bug fixes to 1.21.1. | | File Size: | 866244 | | Last Modified: | Jun 24 02:13:43 2005 |
| MD5 Checksum: | cb4c6a65ed848f34b26723973345b732 |
|
| /// File Name: |
zm-1.21.1.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | Changes: | Various new features and bug fixes. | | File Size: | 865374 | | Last Modified: | Jun 20 02:41:36 2005 |
| MD5 Checksum: | 37c294f02d5ba229db4ef77cc56b9cf2 |
|
| /// File Name: |
linux-2.4.31-ow1.tar.gz |
Description:
|
The Openwall Linux kernel patch is a collection of security hardening features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.
| | Author: | Solar Designer | | Homepage: | http://www.openwall.com/linux | | Changes: | Minimal changes. | | File Size: | 32692 | | Last Modified: | Jun 18 14:32:27 2005 |
| MD5 Checksum: | f37f5b4763a9bf179bb7f5393d413d50 |
|
| /// File Name: |
linux-2.4.30-ow3.tar.gz |
Description:
|
The Openwall Linux kernel patch is a collection of security hardening features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.
| | Author: | Solar Designer | | Homepage: | http://www.openwall.com/linux | | Changes: | This version adds a fix to the ELF core dump vulnerability. | | File Size: | 35491 | | Related CVE(s): | CAN-2005-1263 | | Last Modified: | Jun 1 03:19:03 2005 |
| MD5 Checksum: | 15ea2e5b5818c2207eb8026147d168c7 |
|
| /// File Name: |
umbrella-0.7.tar.bz |
Description:
|
The Umbrella security mechanism implements a combination of process-based Mandatory Access Control (MAC) and authentication of files through Digital Signed Binaries (DSB) for Linux based consumer electronics devices ranging from mobile phones to settop boxes. Umbrella is implemented on top of the Linux Security Modules (LSM) framework. The MAC scheme is enforced by a set of restrictions on each process. This policy is distributed with a binary in form of execute restrictions (in the file signature) and within the program, where the developer has the opportunity of making a restricted fork.
| | Homepage: | http://umbrella.sourceforge.net/ | | Changes: | Various fixes. | | File Size: | 176658 | | Last Modified: | Jun 1 02:57:38 2005 |
| MD5 Checksum: | c260b14578e7b8f577e71b0067696cbc |
|
| /// File Name: |
zm-1.21.0.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | Changes: | Addition of camera control, plus several bugfixes. | | File Size: | 816226 | | Last Modified: | Mar 24 02:27:38 2005 |
| MD5 Checksum: | 2cb674e083ded0c5233f8be43c33619b |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
