Ostiary 3.4
Sponsored Links
Ostiary 3.4 Ranking & Summary
File size:
0.067 MB
Platform:
Any Platform
License:
Free To Use But Restricted
Price:
Downloads:
1301
Date added:
2006-04-01
Publisher:
Ray Ingles
Ostiary 3.4 description
Tools like ssh and lsh are great for allowing secure remote access to your system. They offer essentially full, flexible remote control of a machine, in an ecrypted and authenticated manner. But they are complex pieces of software; theres no way to do what they do without being complex. And with complexity comes bugs. Tools like ssh and lsh, and VPNs like CIPE, PPTP, and more have all had serious flaws that would allow an attacker to get full control over your system.
If you leave such programs running all the time, you take the risk that someone is going to use an exploit on you before you have a chance to apply a patch. For some purposes, this is an acceptable - even necessary - tradeoff, but it would be nice to enable them only when actually needed, to minimize the risk. And for other purposes, ssh et. al. are overkill. Perhaps you only really need to remotely initiate a limited set of operations. In this case, you dont need a shell prompt, just a way to securely kick off scripts from elsewhere.
Enter Ostiary. It is designed to allow you to run a fixed set of commands remotely, without giving everyone else access to the same commands. Ostiary is designed to do exactly and only what is necessary for this, and no more. The only argument given to the command is the IP address of the client, and only if the authentication is successful.
Main features:
- "First, do no harm." It should not be possible to use the Ostiary system itself to damage the host its running on. In particular, its willing to accept false negatives (denying access to legitimate users) in order to prevent false positives (allowing access to invalid users).
- Insofar as possible, eliminate any possibility of bugs causing undesired operations. Buffer overflows, timing attacks, etc. should be impossible for an external attacker to execute. Theres no point in installing security software if it makes you less secure.
- Be extremely modest in memory and CPU requirements. I want to be able to fire off commands on my webserver (running on a Mac SE/30, a 16MHz 68030 machine) from my Palm Pilot (a 16MHz 68000 machine). Things like ssh already take 30 seconds or more to start up - I cant afford anything too fancy.
- Keep things simple. Im no crypto expert; I know Im not capable of coming up with an ssh replacement. So I need to keep things so utterly simple that I can be sure Im not missing anything important.
Enhancements:
- Several non-security-related bugfixes, including some clarified log messages and an update to the TCP-wrappers autoconf macros.
- Debian packages have been added.
If you leave such programs running all the time, you take the risk that someone is going to use an exploit on you before you have a chance to apply a patch. For some purposes, this is an acceptable - even necessary - tradeoff, but it would be nice to enable them only when actually needed, to minimize the risk. And for other purposes, ssh et. al. are overkill. Perhaps you only really need to remotely initiate a limited set of operations. In this case, you dont need a shell prompt, just a way to securely kick off scripts from elsewhere.
Enter Ostiary. It is designed to allow you to run a fixed set of commands remotely, without giving everyone else access to the same commands. Ostiary is designed to do exactly and only what is necessary for this, and no more. The only argument given to the command is the IP address of the client, and only if the authentication is successful.
Main features:
- "First, do no harm." It should not be possible to use the Ostiary system itself to damage the host its running on. In particular, its willing to accept false negatives (denying access to legitimate users) in order to prevent false positives (allowing access to invalid users).
- Insofar as possible, eliminate any possibility of bugs causing undesired operations. Buffer overflows, timing attacks, etc. should be impossible for an external attacker to execute. Theres no point in installing security software if it makes you less secure.
- Be extremely modest in memory and CPU requirements. I want to be able to fire off commands on my webserver (running on a Mac SE/30, a 16MHz 68030 machine) from my Palm Pilot (a 16MHz 68000 machine). Things like ssh already take 30 seconds or more to start up - I cant afford anything too fancy.
- Keep things simple. Im no crypto expert; I know Im not capable of coming up with an ssh replacement. So I need to keep things so utterly simple that I can be sure Im not missing anything important.
Enhancements:
- Several non-security-related bugfixes, including some clarified log messages and an update to the TCP-wrappers autoconf macros.
- Debian packages have been added.
Ostiary 3.4 Screenshot
Ostiary 3.4 Keywords
To run
Ostiary 3.4
access to
ostiary
ssh
scripts
secure
manner
access
Ostiary 3.4
System Administration
System
Bookmark Ostiary 3.4
Ostiary 3.4 Copyright
WareSeeker periodically updates pricing and software information of Ostiary 3.4 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of Ostiary 3.4 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
Featured Software
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
Related Information
estuary
ostiary thrull
how to run faster
ossuary
to run lyrics
born to run
how to run a business
to run josiah leming
ostiary definition
lyrics to run it
to run in spanish
how to run
define ostiary
Ostiarius
to run or not to run
how to run fast
learn to run
to run with the angels on streets made of gold
Version History
Related Software
Ssh library was designed to be used by programmers needing a working SSH framework. Free Download
Zorp is a modular proxy suite written in C. Free Download
Secure FTP Factory is a set of Java based client components for exchanging data between machines. Free Download
Zoidberg is a modular Perl shell. Free Download
DenyHosts is a script intended to be run by Linux system administrators to help thwart ssh server attacks. Free Download
Libvirt is a C toolkit to interract with the virtualization capabilities of recent versions of Linux (and other OSes). Free Download
Secure iNet Factory is a suite of easy-to-use Java based components for developing secure network capable applications. Free Download
MindTerm is an SSH Java library and an SSH client. Free Download
Latest Software
Popular Software
Favourite Software
