Index of Linux Administration
Recommended UNIX/Linux Links: Linux Ftp Watcher, Linux Links by Goob, KMFMS, Linux Web Watcher, LinuxHQ, LWN daily, Slashdot, LinuxWorld, Focus on Linux, Linux Resources, Linux Center, Linux Life, Woven Goods, Freshmeat, UnixScape, Linux Apps, Linux Software Index, Linux Power, Linux Games, Themes.org, LDP, SunSite, Linux Online, Trove, Linux Applications and Utilities Page, Linux Resources, UNIX Wizards, Unix Guru Universe, Resources GEEK-GIRL provides, Linuxberg, UnixPower.org
.. Dec 9 11:57:28 1999 1024 Up to higher level directory.
Linux-HOWTOs Sep 3 15:53:57 1999 3584 The answer is here if it is not elsewhere.
Mini-HOWTOs-FAQs Sep 2 15:58:51 1999 3072 Mini HOWTOs and FAQs for Linux
install-guide-3.2.ht..> Sep 3 15:53:58 1999 9728 Need help installing Linux?
lafaq Sep 3 15:53:58 1999 512 Linux Administrators FAQ. Maintained by Fyodor.
lkmpg-1.0.1.examples Sep 3 15:53:59 1999 512 Linux Kernel Module Programming Guide Examples
lkmpg-1.0.1.html Sep 3 15:53:59 1999 1536 Linux Kernel Module Programming Guide
lpg Sep 2 16:00:39 1999 4608 The Linux Programmers' Guide
mgtl Sep 2 16:07:10 1999 512 Manager's Guide to Linux
nag Sep 3 15:54:00 1999 7680 The Network Administrators' Guide
sag-0.6.1.html Sep 3 15:54:00 1999 2048
tlk-0.8-3.html Sep 3 15:54:01 1999 512 The Linux Kernel
Fwctl-0.20.tar.gz Sep 15 15:07:26 1999 40778 Fwctl is a program that intends to make it easier to configure a tight firewall. It provides a configuration syntax that is easier to use and more expressive than the low-level primitives offered by ipchains. It supports multiple interfaces, masquerading and packet accounting. Fwctl doesn't replace a good security engineer, but it can make the job of the security engineer simpler. By Francis Lacoste
Fwctl-0.21.tar.gz Oct 20 09:13:23 1999 45732 Fwctl is a program that intends to make it easier to configure a tight firewall. It provides a configuration syntax that is easier to use and more expressive than the low-level primitives offered by ipchains. I t supports multiple interfaces, masquerading and packet accounting. Fwctl doesn't replace a good security engineer, but it can make the job of the security engineer simpler. By Francis Lacoste
Fwctl-0.22.tar.gz Dec 17 22:00:52 1999 54358 Fwctl is a program that intends to make it easier to configure a tight firewall. It provides a configuration syntax that is easier to use and more expressive than the low-level primitives offered by ipchains. It supports multiple interfaces, masquerading and packet accounting. Fwctl doesn't replace a good security engineer, but it can make the job of the security engineer simpler. Changes: New support for port forwarding, definitions for pptp, ipsec, ip_pkt, icmp_pkt, and udp_pkt services, and minor bugfixes. By Francis Lacoste
NetMon.tar.gz Nov 2 14:02:48 1999 17871 NetMon is a LAN-wide process monitor (a kind of "top" for Linux networks) using GTK widgets. Homepage here. By Meik Hellmund
OpenBSD-ftp-1.0-1.sr..> Dec 7 13:05:49 1999 65209 OpenBSD-ftp is a port of the ftp client from OpenBSD to Linux. This client has more features than the traditional UNIX ftp client. It features command line editing, command history and 'auto fetching' which lets you put the file you want to get directly on the command line. Currently only .rpms are available. Homepage here. By Oliver Kurth
TracePackage-0.9.0.t..> Nov 19 11:00:48 1999 308926 The Linux Trace Toolkit catalogs system events in minute detail, and allows a user to determine exactly what is transpiring on his system, down to the microsecond. Requires kernel patch. By Karim Yaghmour
acct0.91.tar.gz Oct 22 11:36:45 1999 39175 Linux accounting-tool for 2.2.x. Homepage here. By S. Krahmer
backdrop.gif Aug 16 17:11:41 1999 1910
dosfw-0.1.tar.bz2 Oct 26 12:53:40 1999 11018 DOSfw is a simple Linux netfilter firewall module which drops denial-of-service attack packets. The current version supports only two attacks and TCP Fingerprint scan, but you may expect other attacks in the (hopefully near) future. Homepage here. By Martin Hinner.
fwt126.tar.gz Oct 26 12:40:42 1999 68314 FWT is a web based administration package for remote configuration and administration of the firewalling and (some) networking aspects of the Linux operating system. The tool is easy to use and can configure most useful parts of ipchains (including masquerading), policy routing, ethernet alias interfaces and redirection of TCP traffic through a masquerading firewall. Homepage here. By Ronnie Sahlberg
gfcc-0.7.3.tar.gz Nov 23 12:39:45 1999 226215 gfcc (GTK+ Firewall Control Center) is a GTK+ application which can control Linux firewall policies and rules, based on ipchains package. Changes: A fix for a serious bug when exporting firewall data. Homepage here. By Koo Kyoseon
gfirewall-19991128.2..> Nov 30 18:27:16 1999 212053 Fire Gnome (aka gfirewall) is a GTK-based GUI for configuring a firewall. Changes: Initial announcement; currently Fire Gnome will only import ipchains configuration from the system it's running on or from a file generated by 'ipchains-save'. Homepage here. By Bart Trojanowski
gmmf-0.93.tar.gz Oct 8 14:44:54 1999 16501 GMMF (Godot's Modified Modular Firewall) is a modularized firewall script based on the nice ipchains-firewall script, orginally by Ian Hall. GMMF is extremely restrictive, and offers easy configuration through individual configuration files which are separate from the main firewall script. It is designed to make administrating a comprehensive firewall somewhat easier by separating out hosts lists from the access rights of those hosts. By R. Gregory
gsal-19991128-htm.ta..> Dec 2 14:46:46 1999 126321 Spanish translation, for the Kurt Seifried's Linux Administrator's Security Guide in HTML format. By Jose Antonio Revilla
gsal-19991128-pdf.ta..> Dec 2 14:49:40 1999 431184 Spanish translation, for the Kurt Seifried's Linux Administrator's Security Guide in pdf format. By Jose Antonio Revilla
gsal-19991128-ps.tar..> Dec 2 14:49:04 1999 182053 Spanish translation, for the Kurt Seifried 's Linux Administrator's Security Guide in postscript format. By Jose Antonio Revilla
gsal-19991128-txt.ta..> Dec 2 14:47:25 1999 117061 Spanish translation, for the Kurt Seifried's Linux Administrator's Security Guide in text format. By Jose Antonio Revilla
ipac-1.05.tar.gz Nov 1 11:44:48 1999 40557 ipac is an IP accounting package for Linux. It collects, summarizes and nicely displays IP accounting data. The output of ipac can be a simple ascii table, an ascii graph or even gif images with graphs showing traffic progression. ipac can be used for IP traffic analysis and for accounting purposes. By Moritz Both
ipchains-firewall-1...> Dec 1 17:34:16 1999 10433 ipchains-firewall is an easily-configurable shell script to establish masquerading and firewalling rules using ipchains. The package contains a script to establish firewalling for a single machine connected to the network without masquerading, a script to establish firewalling for a system acting as a router routing to non-private IP space, a script to establish firewalling and masquerading for a system acting as a router routing to private IP address space, and one to establish firewalling and masquerading for a system acting as a router, routing to multiple RFC1918 subnets over multiple interfaces. The distribution also includes a copy of midentd v1.6, to enable identd over the masqueraded network. Changes: A fixed script for routable networks and multiple networks, and minor changes to other scripts. Homepage here. By Ian Hall-Beyer
lasg-0-0-9.pdf Aug 16 17:11:42 1999 292529
lasg-0-0-98.pdf Aug 16 17:11:42 1999 326701
lasg-0-1-0.pdf Aug 16 17:11:42 1999 365838
lasg-0-1-1.pdf Aug 16 17:11:42 1999 377510 Linux Administrators Security Guide v0.1.1 (.pdf) - Linux Administrators Security Guide is a 150+ page document on Linux security (.pdf format). By Kurt Seifried.
lasg-0-1-3.pdf Aug 16 17:11:41 1999 426880 Linux Administrators Security Guide v0.1.3 is a 170+ page document on Linux security (pdf format only). 426880 bytes. By Kurt Seifried.
lasg-0-1-7.pdf Sep 20 13:51:31 1999 469170 Linux Administrators Security Guide is a 180+ page document on Linux security. You must have the Adobe PDF viewer or xpdf with patches to view it. See the FAQ for details.
lasg-faq.html Aug 16 17:11:41 1999 14700 Short FAQ for the Linux Administrators Security Guide (above). By Kurt Seifried.
lasg-snapshot.tar.gz Oct 21 15:19:18 1999 139641 Linux Administrator's Security Guide - Newest snapshot. Updated October 21st 1999, 15:24 EST. The LASG has been updated some more, and the license has changed. The LASG is now OpenContent, I am doing this in the hopes it will encourage the community to contribute. Homepage here. By Kurt Seifried.
lcap-0.0.1.tar.bz2 Dec 13 14:50:57 1999 10427 LCAP allows a system administrator to remove specific capabilities from the kernel in order to make the system more secure. LCAP modifies the value in the sysctl file /proc/sys/kernel/cap-bound. "Capabilities" are a form of kernel-based access control. Linux kernel versions 2.2.11 and greater include the idea of a "capability bounding set," a list of capabilities that can be held by any process on the system. If a capability is removed from the bounding set, the capability may not be used by any process on the system (even processes owned by root). By spoon
lcap-0.0.2.tar.bz2 Dec 14 13:56:01 1999 10719 LCAP allows a system administrator to remove specific capabilities from the kernel in order to make the system more secure. LCAP modifies the value in the sysctl file /proc/sys/kernel/cap-bound. "Capabilities" are a form of kernel-based access control. Linux kernel versions 2.2.11 and greater include the idea of a "capability bounding set," a list of capabilities that can be held by any process on the system. If a capability is removed from the bounding set, the capability may not be used by any process on the system (even processes owned by root). Changes: Use of LCAP's return code to determine status of various capabilities. Homepage here. By spoon
lcap-0.0.3.tar.bz2 Dec 24 05:50:11 1999 11289 LCAP allows a system administrator to remove specific capabilities from the kernel in order to make the system more secure. LCAP modifies the value in the sysctl file /proc/sys/kernel/cap-bound. "Capabilities" are a form of kernel-based access control. Linux kernel versions 2.2.11 and greater include the idea of a "capability bounding set," a list of capabilities that can be held by any process on the system. If a capability is removed from the bounding set, the capability may not be used by any process on the system (even processes owned by root). Changes: A fix for a bug with the -z option. Homepage here. By spoon
lids-0.1-2.2.12.tar...> Oct 15 16:52:49 1999 9330 lids is an intrusion detection system patch for the Linux kernel; it can protect important files from being changed. When it's in effect, no one (including root) can change the protected files or directories and their sub-directories. First release. By Xie Hua Gang
lids-0.2-2.2.12.tar...> Oct 19 12:12:10 1999 10208 lids is an intrusion detection system patch for linux kernel 2.2.12; it can protect important files from being changed. When it's in effect, no one (including root) can change the protected files or directories and their sub-directories. Changes: Bug fixes related to hard links, rename, symlinks , mknod, and mkdir, and now no one can mv, rm, chmod, chown, or ln in the directories you protect. lids homepage. By Xie Hua Gang
lids-0.3-2.2.13.tar...> Oct 29 08:30:40 1999 19308 lids is an intrusion detection system patch for the Linux kernel; it can protect important files from being changed. When it's in effect, no one (including root) can change the protected files or directories and their sub-directories, and the protected append-only files can only be appended. It can also protect the hard disk's MBR, and can also disallow sniffing while the NIC is in promiscuous mode. Changes: Upgraded the kernel version to 2.2.13. Protected append-only files. Protected writing to the hard disk MBR. Fixed some bugs in the last version. Added config tools (lidsadm). Added the patch from Bosko Radivojevic changed APPEND_ONLY and IMMUTABLE flags; added PROMISC mode for network interfaces (disallowing sniffing). lids homepage. By Xie Hua Gang
lids-0.4-2.2.13.tar...> Nov 19 10:33:02 1999 22576 lids is an intrusion detection system patch for the Linux kernel; it can protect important files from being changed. When it's in effect, no one (including root) can change the protected files or directories and their sub-directories, and the protected append-only files can only be appended. It can also protect the hard disk's MBR, and can also disallow sniffing while the NIC is in promiscuous mode. Changes: Seal the kernel program, mounted filesysten protection, loaded modules protection, running processes protection, and more safty and detailed logging. lids homepage. By Xie Hua Gang
lids-0.4.1-2.2.13.ta..> Nov 26 14:16:18 1999 34208 lids is an intrusion detection system patch for the Linux kernel; it can protect important files from being changed. When it's in effect, no one (including root) can change the protected files or directories and their sub-directories, and the protected append-only files can only be appended. It can also protect the hard disk's MBR, and can also disallow sniffing while the NIC is in promiscuous mode. Changes: Now there is a password to turn lids on/off, Fixed bug in protecting MBR writing, Fixed bug in log file protection, and Fixed bugs in lidsadm for security reasons. lids homepage. By Xie Hua Gang
lids-0.6-2.2.13.tar...> Dec 10 13:01:33 1999 35786 Linux IDS Patch - Version 0.6 - Dec 9, 1999. Lids is an intrusion detection system in the Linux kernel. This patch (Version 0.6) is for the Linux kernel 2.2.13. LIDS 0.6 has a brand new design. When LIDS is in effect, no one (including root) can change the protected files or directories and their sub-directories, and the protected append-only files can only be appended. It can also protect the hard disk's MBR, and can also disallow sniffing while the NIC is in promiscuous mode. Changes: IP firewalling rules protection, ptrace syscall lock, Allow some specified processes to access /dev/mem, Modules protection, Mounted filesystem protection, Hide sensitive processes, Running processed protection, More safty & detailed logging. Homepage here. By Xie Hua Gang
lids-0.6.1-2.2.13.ta..> Dec 15 11:42:30 1999 35528 Linux IDS Patch - Version 0.6.1 - Dec 15, 1999. Lids is an intrusion detection system in the Linux kernel. This patch (Version 0.6.1) is for the Linux kernel 2.2.13. LIDS 0.6 has a brand new design. When LIDS is in effect, no one (including root) can change the protected files or directories and their sub-directories, and the protected append-only files can only be appended. It can also protect the hard disk's MBR, and can also disallow sniffing while the NIC is in promiscuous mode. Changes: A bugfix. Homepage here. By Xie Hua Gang
linux-2.0.38-ow4.tar..> Oct 27 13:53:49 1999 25659 This patch (for kernel version 2.0.38) is a collection of security-related features for the Linux kernel, all configurable via the new 'Security options' configuration section. In addition to the new features, some versions of the patch contain various security fixes. The number of such fixes changes from version to version, as some are becoming obsolete (such as because of the same problem getting fixed with a new kernel release), while other security issues are discovered. Homepage here. By Solar Designer
linux-2.2.12-ow6.tar..> Oct 12 11:33:52 1999 24545 The Secure-Linux patch adds a few security features to the kernel which, while not a complete method of protection, will stop most of the 'cookbook' buffer overflow exploits cold. It also adds the option of restricting the use of symlinks in +t (temp) directories which fixes most tmp-race exploits as well. It can also add a little bit more privacy to the system by restricting access to parts of /proc to root so that users may not see who else is logged on or what they're doing. By Solar Designer
linux-2.2.12.tar.gz Aug 16 17:11:41 1999 14850578 Linux kernel version 2.2.12.
linux-2.2.13-ow1.tar..> Oct 27 13:53:38 1999 19873 This patch (for kernel version 2.2.13) is a collection of security-related features for the Linux kernel, all configurable via the new 'Security options' configuration section. In addition to the new features, some versions of the patch contain various security fixes. The number of such fixes changes from version to version, as some are becoming obsolete (such as because of the same problem getting fixed with a new kernel release), while other security issues are discovered. Homepage here. By Solar Designer
linux-2.2.13.tar.gz Oct 19 17:32:31 1999 15079540 Linux kernel version 2.2.13. www.kernel.org
linux-2.3.21.tar.gz Oct 12 12:09:11 1999 16453902 Linux kernel version 2.3.21.
linux-2.3.22.tar.bz2 Oct 15 15:21:37 1999 13369372 Linux kernel version 2.3.22. www.kernel.org
linux-2.3.23.tar.bz2 Oct 22 13:11:54 1999 13538670 Linux kernel version 2.3.23 (developmental). www.kernel.org
linux-2.3.24.tar.bz2 Oct 28 17:05:00 1999 13546163 Linux kernel version 2.3.24 (developmental). www.kernel.org
linux-2.3.25.tar.bz2 Nov 2 15:31:27 1999 13555952 Linux kernel version 2.3.25 (developmental). www.kernel.org
linux-2.3.26.tar.gz Nov 8 17:25:59 1999 16758695 Linux kernel version 2.3.26 (developmental). www.kernel.org
linux-2.3.29.tar.gz Nov 24 21:26:23 1999 17140145 Linux kernel version 2.3.29 (developmental). www.kernel.org
linux-2.3.31.tar.bz2 Dec 8 17:45:56 1999 14042097 Linux kernel version 2.3.31 (developmental). www.kernel.org
linux-2.3.32.tar.bz2 Dec 14 13:35:17 1999 14055441 Linux kernel version 2.3.32 (developmental). www.kernel.org
linux-2.3.33.tar.gz Dec 14 16:16:34 1999 17353191 Linux kernel version 2.3.33 (developmental). www.kernel.org
linux-2.3.34.tar.gz Dec 22 13:46:17 1999 17443510 Linux kernel version 2.3.33 (developmental). www.kernel.org
linux-2.3.35.tar.gz Dec 30 22:07:06 1999 17519976 Linux kernel version 2.3.35 (developmental). www.kernel.org
linux_brfw2.diff May 27 09:01:35 1999 7728 This patch for Kernel 2.2.x adds a new firewall chain used to filter packets to bridge. This is the first release of this patch but it seems to be stable, as no crash has been encountered. By AC2I
linux_rasterman.gif Aug 16 17:11:41 1999 4584
linuxrocks.gif Aug 16 17:11:41 1999 229
log_applet.tar.gz Oct 12 11:39:27 1999 134462 Log Applet is a fairly small applet for the GNOME panel which monitors a file (typically a log file) as it is updated. It will display a customizable number of lines at the end of the file. By Michael Craig
medusa-0.6.3.tar.gz Nov 4 10:13:05 1999 111820 Medusa is a package, which improves overall security of Linux OS by extending standard Linux security architecture, but preserving backward compatibility. There is a small kernel patch and a user space security daemon. Homepage here.
netfilter-0.1.11.tar..> Oct 28 11:24:00 1999 225852 etfilter is a framework for arbitrary packet mangling. So far, a new NAT system and packet-filtering system have been built on top of it, as well as compatibility modules for ipfwadm and ipchains. Netfilter is a work-in-progress, but should be fairly robust for non-exotic work. By Rusty Russel
netfilter-0.1.12.tar..> Nov 5 10:26:22 1999 226981 Netfilter is a framework for arbitrary packet mangling. So far, a new NAT system and packet-filtering system have been built on top of it, as well as compatibility modules for ipfwadm and ipchains. Netfilter is a work-in-progress, but should be fairly robust for non-exotic work. Changes: Minor fixes, and an update against the Linux 2.3.25 kernel. By Rusty Russel
netfilter-0.1.13.tar..> Dec 16 09:09:45 1999 252545 netfilter is a framework for arbitrary packet mangling. So far, a new NAT system and packet-filtering system have been built on top of it, as well as compatibility modules for ipfwadm and ipchains. Netfilter is a work-in-progress, but should be fairly robust for non-exotic work. Changes: The fragment bugs have been fixed, but users must apply a kernel patch for 2.3.33. Homepage here. By Rusty Russell
netfilter-0.1.14.tar..> Dec 24 05:13:54 1999 231301 netfilter is a framework for arbitrary packet mangling. So far, a new NAT system and packet-filtering system have been built on top of it, as well as compatibility modules for ipfwadm and ipchains. Netfilter is a work-in-progress, but should be fairly robust for non-exotic work. Changes: A local traffic oops fix, and a RH6.0 compile fix. Homepage here. By Rusty Russell
netfilter-0.1.9.tar...> Sep 28 13:45:41 1999 239252 Netfilter 0.1.9 for Linux 2.3.18: Packet Mangling for Linux 2.3. New features: Should work with gcc 2.7.x (no more `memset undefined'), local NFS and conntrack should work fine, speed should be fine for modems, `Call rusty: need skb_realloc_tailroom!' for ftp cured, tcp and udp ports printed correctly in iptables, should compile on libc5 for SURE this time. (Official Site).
officialpenguin.gif Aug 16 17:11:41 1999 10968
patch-2.2.13pre17 Oct 13 10:48:32 1999 3014576 Kernel Patch for Linux 2.2.13pre17 has been released.
patch-netfilter-0.1...> Sep 28 13:45:43 1999 35198 Patch to upgrade from Netfilter 0.1.8.
phpfwgen-0.1.tar.gz Dec 16 09:46:15 1999 5892 The PHP firewall generator is a simple PHP script that generates a firewall script for ipchains-based firewalls. The aim is to support an easily configurable rule set similar to those supported by commercial firewall systems. Homepage here. By Del
phpfwgen-0.2.tar.gz Dec 17 09:50:18 1999 10166 The PHP firewall generator is a simple PHP script that generates a firewall script for ipchains-based firewalls. The aim is to support an easily configurable rule set similar to those supported by commercial firewall systems. Changes: Appearance was cleaned up somewhat. Reverse rules have been inserted for outgoing TCP packets on established connections. Homepage here. By Del
phpfwgen-0.3.tar.gz Dec 20 12:30:24 1999 13741 The PHP firewall generator is a simple PHP script that generates a firewall script for ipchains-based firewalls. The aim is to support an easily configurable rule set similar to those supported by commercial firewall systems. Changes: It is now possible to specify port forwarding and redirection rules. The script is now stored on disk and can be e-mailed. There have been many cosmetic changes and many bug fixes. Homepage here. By Del
phpfwgen-0.4.tar.gz Dec 24 05:52:51 1999 15282 The PHP firewall generator is a simple PHP script that generates a firewall script for ipchains-based firewalls. The aim is to support an easily configurable rule set similar to those supported by commercial firewall systems. Changes: Fixes for some unusual network configurations, various installation tidy-ups and cosmetic changes, and there is now an on-line demo as well as an RPM. Homepage here. By Del
pmfirewall-1.1.1.tar..> Nov 2 11:51:24 1999 13361 PMFirewall is an Ipchains Firewall and Masquerading Configuration Utility for Linux. It is designed to allow a beginner to to build a custom firewall with little or no ipchains experience. This firewall should work for most Workstations, Servers, and Dual NIC routers using either a dialup or LAN setup. It is restrictive to outside attacks while still being as transparent as possible to those inside. Currently only Redhat 6.x and Mandrake 6.x are supported, but support for other distributions is being developed. Changes: A bug was fixed which caused masquerading to be installed even if you chose not to enable it; plus a few small cosmetic fixes. By Rick Johnson
pmfirewall-1.1.2.tar..> Nov 10 12:03:54 1999 14021 PMFirewall is an Ipchains Firewall and Masquerading Configuration Utility for Linux. It is designed to allow a beginner to build a custom firewall with little or no ipchains experience. This firewall should work for most Workstations, Servers, and Dual NIC routers using either a dialup or LAN setup. It is restrictive to outside attacks while still being as transparent as possible to those inside. Changes: Support for most popular distributions of Linux, a new display of detected interface and network information on firewall start, and code-cleanups and error checking. Homepage here. By Rick Johnson
pmfirewall-1.1.3.tar..> Dec 1 15:24:04 1999 52389 PMFirewall is an Ipchains Firewall and Masquerading Configuration Utility for Linux. It is designed to allow a beginner to build a custom firewall with little or no ipchains experience. This firewall should work for most Workstations, Servers, and Dual NIC routers using either a dialup or LAN setup. It is restrictive to outside attacks while still being as transparent as possible to those inside. Changes: A fix for a problem with pmfirewall starting before pcmcia ethernet cards were activated, causing the firewall not to activate, use of a reject flag instead of denal of IDENTD requests to fix timeouts problems for services that require an AUTH response, DHCP fixed for cable modem users, much more. Homepage here. By Rick Johnson
pmfirewall-1.1.tar.g..> Nov 1 12:03:41 1999 13110 PMFirewall is an Ipchains Firewall and Masquerading Configuration Utility for Linux. It is designed to allow a beginner to to build a custom firewall with little or no ipchains experience. This firewall should work for most Workstations, Servers, and Dual NIC routers using either a dialup or LAN setup. It is restrictive to outside attacks while still being as transparent as possible to those inside. Currently only Redhat 6.x and Mandrake 6.x are supported, but support for other distributions is being developed. By Rick Johnson
redir-2.1.tar.gz Oct 18 13:43:37 1999 28527 Redir is a port redirector. Its functionality basically consists of the ability to listen for TCP connections on a given port, and, when it recieves a connection, to then connect to a given destination address/port, and pass data between them. It finds most of its applications in traversing firewalls, but, of course, there are other uses. It can run under inetd or stand alone (in which case it handles multiple connections). It is 8 bit clean, not limited to line mode, is small and light. By Sammy Creasey. Homepage here.
redir-2.2.1.tar.gz Dec 26 12:58:54 1999 42247 Redir is a port redirector. Its functionality basically consists of the ability to listen for TCP connections on a given port, and, when it recieves a connection, to then connect to a given destination address/port, and pass data between them. It finds most of its applications in traversing firewalls, but, of course, there are other uses. It can run under inetd or stand alone (in which case it handles multiple connections). It is 8 bit clean, not limited to line mode, is small and light. Changes: A bugfix has been made for the mysteriously dying redir processes, and a patch has been added to enable traffic shaping functionality. Homepage here. By Sam Creasey
redir-2.2.tar.gz Dec 15 10:53:56 1999 39936 Redir is a port redirector. Its functionality basically consists of the ability to listen for TCP connections on a given port, and, when it recieves a connection, to then connect to a given destination address/port, and pass data between them. It finds most of its applications in traversing firewalls, but, of course, there are other uses. It can run under inetd or stand alone (in which case it handles multiple connections). Changes: Enhanced support for redirection of FTP sessions, and minor bugfixes/improvements. Homepage here. By Sam Creasey
rexFBD-0.2.tar.gz Dec 20 10:31:39 1999 3814 Fork Bomb Defuser is an easily loadable kernel module for Linux which detects, logs, and disables "fork bombs". It allows you to configure max_forks_per_second and max_tasks_per_user parameters at module load time. Any possible fork bomb that attempts to spawn a huge number of processes simultaneously is detected in real time, and the fork bomb is disabled. Changes: A fix for a bug where the root user could be locked out. Homepage here. By Rohit Singh
rexFBD-0.3.tar.gz Dec 28 00:54:55 1999 14654 Fork Bomb Defuser is an easily loadable kernel module for Linux which detects, logs, and disables "fork bombs". It allows you to configure max_forks_per_second and max_tasks_per_user parameters at module load time. Any possible fork bomb that attempts to spawn a huge number of processes simultaneously is detected in real time, and the fork bomb is disabled. Changes: A major bug which was causing the module to malfunction has been removed. Rather than being rescheduled, the offending processes are killed whenever the MAX_FORKS_PER_SECOND or MAX_TASKS_PER_USER parameters are exceeded. This change will solve the problem in the previous version. Homepage here. By Rohit Singh
rhupdmgr-0.4.tar.gz Nov 16 15:25:51 1999 13449 rhupdmgr is a script which sends an email to the sysadmins when a machine has fallen out of sync with the RedHat Updates. It works by checking a generated list of RPMs to be updated. By Adam Jacob
Copyright © 1999 Kroll-O'Gara Information Security Group, All Rights Reserved. Legal Notice