imageshack us hosting service
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 2730
AlternC Hosting Software 0.9.5
AlternC Hosting Software is a software to administer email, Web, and mailing list hosting. more>>
AlternC is a set of user-friendly hosting software. AlternC Hosting Software is easy to install and based on open-source software only.
AlternC includes an automatic installation and configuration system, and a web-based control panel to manage users accounts and web services (e.g. domains, emails, ftp accounts, statistics...)
AlternC is based on the Debian GNU/Linux system (Woody version), and it requires other softwares such as Apache, Postfix, Mailman ...
It also contains a documented API, so you can customize your web panel quickly and easily.
AlternC was initially written in French. However, the debian package includes an English version. The translation of the project into other languages such as German and Spanish is in process. Volunteers are welcome ! (See the internationalization page). The documentation is only available in French (so far).
AlternC has been created by the system administrators of Lautre Net, members of Lautre Net and Globenet.
Enhancements:
- This release continues the Debian compliance challenge.
- Quota management was corrected, bind now forbids recursion and domain poisoning, and the Debian package uses po-debconf.
- New functions were also added, such as postfix saslauthd with rimap and MySQL user rights managment in the Web desktop.
- The .eu TLD is now properly handled.
<<lessAlternC includes an automatic installation and configuration system, and a web-based control panel to manage users accounts and web services (e.g. domains, emails, ftp accounts, statistics...)
AlternC is based on the Debian GNU/Linux system (Woody version), and it requires other softwares such as Apache, Postfix, Mailman ...
It also contains a documented API, so you can customize your web panel quickly and easily.
AlternC was initially written in French. However, the debian package includes an English version. The translation of the project into other languages such as German and Spanish is in process. Volunteers are welcome ! (See the internationalization page). The documentation is only available in French (so far).
AlternC has been created by the system administrators of Lautre Net, members of Lautre Net and Globenet.
Enhancements:
- This release continues the Debian compliance challenge.
- Quota management was corrected, bind now forbids recursion and domain poisoning, and the Debian package uses po-debconf.
- New functions were also added, such as postfix saslauthd with rimap and MySQL user rights managment in the Web desktop.
- The .eu TLD is now properly handled.
Download (0.59MB)
Added: 2006-05-04 License: GPL (GNU General Public License) Price:
1268 downloads
GNU Hosting Helper 2.03
GNU Hosting Helper is a Web-based Web hosting management system that provides an administration system. more>>
GNU Hosting Helper is a web hosting management package. It is distributed under the GNU GPL (General Public License) Agreement.
This package provides tools to manage many of the aspects of a hosting environment.
GNU Hosting Helper also provides a client utility to reduce the need for staff to perform tasks that a client needs such as managing email accounts.
Main features:
Administrative Features
The features provided through the administrative interface include (but not limited to):
- Server Tasks
- Security Management
- Server Monitor
- Ticket Center
- News Management
- Knowledge Base
- Fraudscreen
- Domain Management
- User Management
- Billing/Accounting
- Account Information Tools
- Miscellaneous Functions
- Package Management
- Manage Hosting Servers
- Manage Client Interfaces
- Manage Mail Servers
- Manage Name Servers
- Manage Signup Servers
- Manage Server Pools
- Manage Administrators
- Manage Admin Daemon
- System Config
Client Features
The features provided thru the client interface include (but not limited to):
- Account Quickview
- Account Resources
- System Information
- Email Functions
- Virtual FTP Management
- Sub Domain Management
- SSL Certificate Management
- Website Management
- Front Page Extensions Management
- Stats and Logs access
- Account Management
- Account Billing
System/Network Support
GNU Hosting Helper currently supports management for the following software:
- Apache 1.3x and 2x
- Sendmail and Postfix
- Most major FPTD software
- BIND 8x and BIND 9x
- MySQL 3x and 4.0.x
Enhancements:
- Fixes an error with MyDNS where straight domains wouldnt resolve.
- Fixes an error with some systems rnd file creation for creating SSL CSR.
- Fixes an error representing bandwidth allotment, usage, and remaining.
- Fixes an error in the init.d file for the admin server daemon.
- Fixes an error with encryption when editing Webmail, signup, mail, and hosting servers.
- Adds SSH port specification and SSH daemon management to all managed servers.
<<lessThis package provides tools to manage many of the aspects of a hosting environment.
GNU Hosting Helper also provides a client utility to reduce the need for staff to perform tasks that a client needs such as managing email accounts.
Main features:
Administrative Features
The features provided through the administrative interface include (but not limited to):
- Server Tasks
- Security Management
- Server Monitor
- Ticket Center
- News Management
- Knowledge Base
- Fraudscreen
- Domain Management
- User Management
- Billing/Accounting
- Account Information Tools
- Miscellaneous Functions
- Package Management
- Manage Hosting Servers
- Manage Client Interfaces
- Manage Mail Servers
- Manage Name Servers
- Manage Signup Servers
- Manage Server Pools
- Manage Administrators
- Manage Admin Daemon
- System Config
Client Features
The features provided thru the client interface include (but not limited to):
- Account Quickview
- Account Resources
- System Information
- Email Functions
- Virtual FTP Management
- Sub Domain Management
- SSL Certificate Management
- Website Management
- Front Page Extensions Management
- Stats and Logs access
- Account Management
- Account Billing
System/Network Support
GNU Hosting Helper currently supports management for the following software:
- Apache 1.3x and 2x
- Sendmail and Postfix
- Most major FPTD software
- BIND 8x and BIND 9x
- MySQL 3x and 4.0.x
Enhancements:
- Fixes an error with MyDNS where straight domains wouldnt resolve.
- Fixes an error with some systems rnd file creation for creating SSL CSR.
- Fixes an error representing bandwidth allotment, usage, and remaining.
- Fixes an error in the init.d file for the admin server daemon.
- Fixes an error with encryption when editing Webmail, signup, mail, and hosting servers.
- Adds SSH port specification and SSH daemon management to all managed servers.
Download (0.18MB)
Added: 2006-04-18 License: GPL (GNU General Public License) Price:
1286 downloads
Yahoo::Marketing::Service 0.08
Yahoo::Marketing::Service is a base class for Service modules. more>>
Yahoo::Marketing::Service is a base class for Service modules.
SYNOPSIS
This module is a base class for various Service modules (CampaignService, AdGroupService) to inherit from. It should not be used directly.
There are some methods common to all Services that are documented below.
See also perldoc Yahoo::Marketing::AccountService ...::AdGroupService ...::AdService ...::BasicReportService ...::BidInformationService ...::BudgetingService ...::CampaignService ...::ExcludedWordsService ...::ForecastService ...::KeywordResearchService ...::KeywordService ...::LocationService ...::MasterAccountService ...::UserManagementService
Please see the API docs at
http://ysm.techportal.searchmarketing.yahoo.com/docs/gsg/index.asp#services
for details about what methods are available from each of the Services.
<<lessSYNOPSIS
This module is a base class for various Service modules (CampaignService, AdGroupService) to inherit from. It should not be used directly.
There are some methods common to all Services that are documented below.
See also perldoc Yahoo::Marketing::AccountService ...::AdGroupService ...::AdService ...::BasicReportService ...::BidInformationService ...::BudgetingService ...::CampaignService ...::ExcludedWordsService ...::ForecastService ...::KeywordResearchService ...::KeywordService ...::LocationService ...::MasterAccountService ...::UserManagementService
Please see the API docs at
http://ysm.techportal.searchmarketing.yahoo.com/docs/gsg/index.asp#services
for details about what methods are available from each of the Services.
Download (0.066MB)
Added: 2006-12-14 License: Perl Artistic License Price:
1044 downloads
Easy Hosting Control Panel 0.21
Easy Hosting Control Panel is designed for hosting multiple domains on a single machine. more>>
Easy Hosting Control Panel is designed for hosting multiple domains on a single machine. It uses LAMP (Linux/Apache/MySQL/PHP).
Easy Hosting Control Panel aims to be easy to install and use, simple, and functional.
Enhancements:
- The installer was improved.
- Known bugs were fixed.
<<lessEasy Hosting Control Panel aims to be easy to install and use, simple, and functional.
Enhancements:
- The installer was improved.
- Known bugs were fixed.
Download (0.49MB)
Added: 2007-06-06 License: GPL (GNU General Public License) Price:
881 downloads
Incredible Hosting System 1
Incredible Hosting System is a tool that allows you to administrate a hosting system using a Web browser. more>>
Incredible Hosting System is a tool that allows you to administrate a hosting system using a Web browser.
The aim is to support administrators and users. Incredible Hosting System currently includes support for Virtual Qmail.
IHS will be a platform for implementing and integrating mail or hosting systems in different environments - small or medium companies looking for tools for managing system accounts, hosting companies offering services based on this system.
System is complex, requires integration of many other applications, for example: WWW server, mail transfer agent, FTP server, database. Also it should be possible to integrate system with other applications that are specific to companys environment.
Aside integration of existing application platform must be built that will allow to manage everything is a manner undependent from tools that are used in background. It should be a centralized and consistent environment. Also API for developers shoule be generic that changes in tools doesnt require changes in code.
Incredible Hosting System will be based on following tools, technologies:
- Apache as WWW server;
- PostgreSQL as default database;
- ProFTPD as default database;
- qmail or Virtual Qmail as a MTA;
- CORBA as a service communication protocol;
- J2EE as an runtime environment;
<<lessThe aim is to support administrators and users. Incredible Hosting System currently includes support for Virtual Qmail.
IHS will be a platform for implementing and integrating mail or hosting systems in different environments - small or medium companies looking for tools for managing system accounts, hosting companies offering services based on this system.
System is complex, requires integration of many other applications, for example: WWW server, mail transfer agent, FTP server, database. Also it should be possible to integrate system with other applications that are specific to companys environment.
Aside integration of existing application platform must be built that will allow to manage everything is a manner undependent from tools that are used in background. It should be a centralized and consistent environment. Also API for developers shoule be generic that changes in tools doesnt require changes in code.
Incredible Hosting System will be based on following tools, technologies:
- Apache as WWW server;
- PostgreSQL as default database;
- ProFTPD as default database;
- qmail or Virtual Qmail as a MTA;
- CORBA as a service communication protocol;
- J2EE as an runtime environment;
Download (3.3MB)
Added: 2006-02-21 License: GPL (GNU General Public License) Price:
1346 downloads
Host on Imageshack 0.5
Host on Imageshack is a service menu tor upload images on Imageshack. more>>
Host on Imageshack is a service menu tor upload images on Imageshack.
The tarball contains the .desktop file, the original script and an icon (modified version of Azureus icon).
Based on imageshack_upload.sh -> http://www.bchesneau.info/articles/2006/10/23/bash-script-to-upload-image-to-imageshack
The tarball content:
#NAME #CONTENT #DESTINATION
1.imageshack.desktop the servicemenu file ~/.kde/share/apps/{konqueror|dolphin}/servicemenu
2.imageshack.png an icon for the menu ~/.kde/share/icons
3.imageshack_upload the original bash script ~/bin
4.README this file
<<lessThe tarball contains the .desktop file, the original script and an icon (modified version of Azureus icon).
Based on imageshack_upload.sh -> http://www.bchesneau.info/articles/2006/10/23/bash-script-to-upload-image-to-imageshack
The tarball content:
#NAME #CONTENT #DESTINATION
1.imageshack.desktop the servicemenu file ~/.kde/share/apps/{konqueror|dolphin}/servicemenu
2.imageshack.png an icon for the menu ~/.kde/share/icons
3.imageshack_upload the original bash script ~/bin
4.README this file
Download (0.015MB)
Added: 2007-06-19 License: GPL (GNU General Public License) Price:
857 downloads
LaTeX Service 0.1
LaTeX Service project is a small service which converts LaTeX into an image. more>>
LaTeX Service project is a small service which converts LaTeX into an image.
It returns a LaTeX rendering of selected text as a TIFF image.
Enhancements:
- Many things could be improved, its just a 0.1 release... but it works
<<lessIt returns a LaTeX rendering of selected text as a TIFF image.
Enhancements:
- Many things could be improved, its just a 0.1 release... but it works
Download (0.009MB)
Added: 2006-10-19 License: GPL (GNU General Public License) Price:
1101 downloads
Peco::Service 1.0
Peco::Service is a Perl module with service specifications for Peco IoC containers. more>>
Peco::Service is a Perl module with service specifications for Peco IoC containers.
SYNOPSIS
use Peco::Service;
$service = Peco::Service->new( $class, @depends, $create, %attrs );
$service = Peco::Service::Factory->new( ⊂routine, @depends );
$service = Peco::Service::Constant->new( $value );
SERVICE TYPES
Peco::Service
A generic service registration class.
Peco::Service::Factory
Factory service registration class. Takes a coderef which is called each time this service is accessed.
Peco::Service::Constant
For constant or scalar values.
<<lessSYNOPSIS
use Peco::Service;
$service = Peco::Service->new( $class, @depends, $create, %attrs );
$service = Peco::Service::Factory->new( ⊂routine, @depends );
$service = Peco::Service::Constant->new( $value );
SERVICE TYPES
Peco::Service
A generic service registration class.
Peco::Service::Factory
Factory service registration class. Takes a coderef which is called each time this service is accessed.
Peco::Service::Constant
For constant or scalar values.
Download (0.015MB)
Added: 2007-06-22 License: Perl Artistic License Price:
854 downloads
encFS service menu
encFS service menu one little KDE service menu for encFS directory. more>>
encFS service menu one little KDE service menu for encFS directory.
Installation:
ungzip and copy in ~/.kde/share/apps/konqueror/servicemenus
Usage:
Click on encFS directory and click on mount.
For unmounting, click on origin directory and click on umount, this unmount and remove destination directory.
READ THIS PLEASE:
This script create a directory in your home with name encFS_$DIR. For to mount correctly, this directory must not exist.
<<lessInstallation:
ungzip and copy in ~/.kde/share/apps/konqueror/servicemenus
Usage:
Click on encFS directory and click on mount.
For unmounting, click on origin directory and click on umount, this unmount and remove destination directory.
READ THIS PLEASE:
This script create a directory in your home with name encFS_$DIR. For to mount correctly, this directory must not exist.
Download (MB)
Added: 2007-04-30 License: GPL (GNU General Public License) Price:
907 downloads
Traffic Statistics Linux Server 1.2.0.0
IP traffic statistics and bandwidth usage reporting cut by host and service more>> The MZL & Novatech Traffic Statistics Linux Server is intended to run in servers in intranet or on a gateway and allows to view the Linux servers network usage information on Windows workstations as HTML reports. It reads IP packet from libpcap and allows users of the free Windows client to see the amount of bandwidth consumed as an icon in the system tray.
The user is able to see which hosts, services or ports were the top traffic consumers. MZL & Novatech TrafficStatistic works on IP packet level, therefore the user gets reports on all the traffic, regardless wether this traffic was made by a browser, a filesharing software or a secure connection. It contains an editor for specification of local addresses and ports to be captured or not captured. This allows to capture traffic to a proxy or VPN but exclude the rest of local traffic.
MZL & Novatech TrafficStatistic can be useful for many diffrent people:
- broadband (like DSL or cable) users with a volume metered (bandwidth limited) charge plan have always an eye on the currently accumulated consumed traffic.
- internet users with a flatrate can see whether a cheaper metered charge plan might be appropriate for their consumption habbits
- internet users are able to see, which services cause the most traffic
- internet users are able to see, how much traffic was consumed with their top target hosts
- operators of dedicated servers in a bandwidth metered charge plan get up-to-date statistics
- network operators can see bandwidth consumption cut by host and service of all machines in the local net
MZL & Novatech TrafficStatistic contains an IP detail record (IPDR) generator developed on basis of ACE. MZL & Novatech TrafficStatistic has be installed with administrator privilegues.
It is distributed as binaries for Linux with lib_c like Redhat 9, Suse 9 or Debian Sarge. The Traffic Statistics Windows client is needed to configure the Linux Server.<<less
Download (2.27MB)
Added: 2009-04-17 License: Freeware Price: Free
197 downloads
epstools service menu 0.1
epstools service menu is used to create a tiff preview inside an eps file. more>>
epstools service menu is used to create a tiff preview inside an eps file.
If a preview exists, it is replaced by the created one.
<<lessIf a preview exists, it is replaced by the created one.
Download (MB)
Added: 2007-02-09 License: GPL (GNU General Public License) Price:
988 downloads
Ktxt2tags Service Menu 1.0
Ktxt2tags Service Menu is a KDE service menu for KTxt2tags software. more>>
Ktxt2tags Service Menu is a KDE service menu for KTxt2tags software.
sv-ktxt2tags is a ServiceMenu for [KTxt2tags http://www.kde-apps.org/content/show.php?content=48474]
KTxt2tags is a GPL front-end for [txt2tags http://txt2tags.sf.net]
Installation:
Make a simbolic link to the ktxt2tags script in /usr/bin/.
Copy the file sv-ktxt2tags.desktop in /.kde/share/apps/konqueror/servicemenus.
Copy the icon txt2tags.png in /usr/share/pixmaps.
<<lesssv-ktxt2tags is a ServiceMenu for [KTxt2tags http://www.kde-apps.org/content/show.php?content=48474]
KTxt2tags is a GPL front-end for [txt2tags http://txt2tags.sf.net]
Installation:
Make a simbolic link to the ktxt2tags script in /usr/bin/.
Copy the file sv-ktxt2tags.desktop in /.kde/share/apps/konqueror/servicemenus.
Copy the icon txt2tags.png in /usr/share/pixmaps.
Download (0.009MB)
Added: 2006-12-20 License: GPL (GNU General Public License) Price:
1038 downloads
Thunderbird Service Menu
Thunderbird Service Menu will allow you to right click on a file and attach it to a new E-mail from Thunderbird. more>>
Thunderbird Service Menu is a service menu that will allow you to right click on a file and attach it to a new E-mail from Thunderbird.
Just extract the "AttachToThunderbirdMail" config file to "/usr/share/apps/konqueror/servicemenus" and it should work.
<<lessJust extract the "AttachToThunderbirdMail" config file to "/usr/share/apps/konqueror/servicemenus" and it should work.
Download (MB)
Added: 2007-03-26 License: GPL (GNU General Public License) Price:
943 downloads
ImageBot 4.0.6
ImageBot allows lets you upload your images to a free image hosting service. more>>
ImageBot 4.0.6 is an extremely useful utility for everyone. It is actually a Firefox extension that allows you to upload your images to a free image hosting service (ImageShack or Photobucket).
ImageBot lets you sort, filter, and make image galleries out of your images in a snap. It is especially good for your eBay auctions by way of the Thumbnail Gallery template included by default.
Enhancements:
- ImageShack now works again.
- Photoshop now works again.
Requirements:
- Mozilla Firefox
Added: 2009-06-29 License: MPL Price: FREE
26 downloads
Other version of ImageBot
ImageBot allows lets you upload your images to a free image hosting service. ImageBot is a Firefox extension that allows lets you upload your images to a free image hostingLicense:MPL (Mozilla Public License)
Configuration with no services supported
Configuration with no services supported script is for a single host firewall configuration with no services supported. more>>
Configuration with no services supported script is for a single host firewall configuration with no services supported by the firewall machine itself.
Sample:
# USER CONFIGURABLE SECTION
# The name and location of the ipchains utility.
IPTABLES=iptables
# The path to the ipchains executable.
PATH="/usr/local/sbin"
# Our internal network address space and its supporting network device.
OURNET="10.5.0.0/24"
OURBCAST="10.5.0.255"
OURDEV="eth0"
# The outside address and the network device that supports it.
ANYADDR="0/0"
ANYDEV="ppp0"
# The TCP services we wish to allow to pass - "" empty means all ports
# note: comma separated
TCPIN="ssh,ftp,ftp-data"
TCPOUT="smtp,www,ssh,telnet,ftp,ftp-data,irc,http"
# The UDP services we wish to allow to pass - "" empty means all ports
# note: comma separated
UDPIN="domain"
UDPOUT="domain"
# The ICMP services we wish to allow to pass - "" empty means all types
# ref: /usr/include/netinet/ip_icmp.h for type numbers
# note: comma separated
ICMPIN="0,3,11"
ICMPOUT="8,3,11"
# Logging; uncomment the following line to enable logging of datagrams
# that are blocked by the firewall.
# LOGGING=1
# END USER CONFIGURABLE SECTION
####################################
# Flush the Input table rules
echo -n Flushing forward... && {
$IPTABLES -F FORWARD
} && echo done
# We want to deny incoming access by default.
# echo -n Denying incoming access... && {
# $IPTABLES -P FORWARD drop
# } && echo done
# Drop all datagrams destined for this host received from outside.
echo -n Dropping incoming datagrams... && {
$IPTABLES -A INPUT -i $ANYDEV -j DROP
} && echo done
# SPOOFING
# We should not accept any datagrams with a source address matching ours
# from the outside, so we deny them.
echo -n Preventing spoofing... && {
$IPTABLES -A FORWARD -s $OURNET -i $ANYDEV -j DROP
} && echo done
# SMURF
# Disallow ICMP to our broadcast address to prevent "Smurf" style attack.
echo -n Preventing SMURFs... && {
$IPTABLES -A FORWARD -p icmp -i $ANYDEV -d $OURNET -j DROP
} && echo done
# We should accept fragments, in iptables we must do this explicitly.
echo -n Accepting fragments... && {
$IPTABLES -A FORWARD -f -j ACCEPT
} && echo done
# TCP
# We will accept all TCP datagrams belonging to an existing connection
# (i.e. having the ACK bit set) for the TCP ports were allowing through.
# This should catch more than 95 % of all valid TCP packets.
echo -n Accepting valid incoming tcp datagrams on existing connections... && {
$IPTABLES -A FORWARD -m multiport -p tcp -d $OURNET --dports $TCPIN ! --tcp-flags SYN,ACK ACK -j ACCEPT
} && echo done
echo -n Accepting valid outgoing tcp datagrams on existing connections... && {
$IPTABLES -A FORWARD -m multiport -p tcp -s $OURNET --sports $TCPIN ! --tcp-flags SYN,ACK ACK -j ACCEPT
} && echo done
# TCP - INCOMING CONNECTIONS
# We will accept connection requests from the outside only on the
# allowed TCP ports.
echo -n Accepting incoming tcp connections on allowed ports... && {
$IPTABLES -A FORWARD -m multiport -p tcp -i $ANYDEV -d $OURNET --dports $TCPIN --syn -j ACCEPT
} && echo done
# TCP - OUTGOING CONNECTIONS
# We will accept all outgoing tcp connection requests on the allowed TCP ports.
echo -n Accepting outgoing traffic on allowed tcp ports... && {
$IPTABLES -A FORWARD -m multiport -p tcp -i $OURDEV -d $ANYADDR --dports $TCPOUT --syn -j ACCEPT
} && echo done
# UDP - INCOMING
# allow UDP datagrams in on the allowed ports and back.
echo -n Allowing UDP datagrams in on the allowed ports and back... && {
$IPTABLES -A FORWARD -m multiport -p udp -i $ANYDEV -d $OURNET --dports $UDPIN -j ACCEPT
$IPTABLES -A FORWARD -m multiport -p udp -i $ANYDEV -s $OURNET --sports $UDPIN -j ACCEPT
} && echo done
# UDP - OUTGOING
# We will allow UDP datagrams out to the allowed ports and back.
echo -n Allowing UDP datagrams out on the allowed ports and back... && {
$IPTABLES -A FORWARD -m multiport -p udp -i $OURDEV -d $ANYADDR --dports $UDPOUT -j ACCEPT
$IPTABLES -A FORWARD -m multiport -p udp -i $OURDEV -s $ANYADDR --sports $UDPOUT -j ACCEPT
} && echo done
# ICMP - INCOMING
# We will allow ICMP datagrams in of the allowed types.
# echo -n Allowing ICMP datagrams in of the allowed types... && {
# $IPTABLES -A FORWARD -p icmp -i $ANYDEV -d $OURNET --icmp-type $ICMPIN -j ACCEPT
# } && echo done
# ICMP - OUTGOING
# We will allow ICMP datagrams out of the allowed types.
# echo -n Allowing ICMP datagrams out of the allowed types... && {
# $IPTABLES -A FORWARD -p icmp -i $OURDEV -d $ANYADDR --icmp-type $ICMPOUT -j ACCEPT
# } && echo done
# DEFAULT and LOGGING
# All remaining datagrams fall through to the default
# rule and are dropped. They will be logged if youve
# configured the LOGGING variable above.
#
# DoS
# enabling Syn-flood protection
echo -n Enabling Syn-flood protection... && {
iptables -A FORWARD -p tcp --syn -m limit --limit 1/s -j ACCEPT
} && echo done
# Enabling Furtive port scanner protection
echo -n Enabling Furtive port scanner protection... && {
iptables -A FORWARD -p tcp --tcp-flags SYN,ACK,FIN,RST RST -m limit --limit 1/s -j ACCEPT
} && echo done
# Enabling ping of death protection
echo -n Enabling ping of death protection... && {
iptables -A FORWARD -p icmp --icmp-type echo-request -m limit --limit 1/s -j ACCEPT
} && echo done
if [ "$LOGGING" ]
then
# Log barred TCP
$IPTABLES -A FORWARD -m tcp -p tcp -j LOG
# Log barred UDP
$IPTABLES -A FORWARD -m udp -p udp -j LOG
# Log barred ICMP
$IPTABLES -A FORWARD -m udp -p icmp -j LOG
fi
#
# end.
<<lessSample:
# USER CONFIGURABLE SECTION
# The name and location of the ipchains utility.
IPTABLES=iptables
# The path to the ipchains executable.
PATH="/usr/local/sbin"
# Our internal network address space and its supporting network device.
OURNET="10.5.0.0/24"
OURBCAST="10.5.0.255"
OURDEV="eth0"
# The outside address and the network device that supports it.
ANYADDR="0/0"
ANYDEV="ppp0"
# The TCP services we wish to allow to pass - "" empty means all ports
# note: comma separated
TCPIN="ssh,ftp,ftp-data"
TCPOUT="smtp,www,ssh,telnet,ftp,ftp-data,irc,http"
# The UDP services we wish to allow to pass - "" empty means all ports
# note: comma separated
UDPIN="domain"
UDPOUT="domain"
# The ICMP services we wish to allow to pass - "" empty means all types
# ref: /usr/include/netinet/ip_icmp.h for type numbers
# note: comma separated
ICMPIN="0,3,11"
ICMPOUT="8,3,11"
# Logging; uncomment the following line to enable logging of datagrams
# that are blocked by the firewall.
# LOGGING=1
# END USER CONFIGURABLE SECTION
####################################
# Flush the Input table rules
echo -n Flushing forward... && {
$IPTABLES -F FORWARD
} && echo done
# We want to deny incoming access by default.
# echo -n Denying incoming access... && {
# $IPTABLES -P FORWARD drop
# } && echo done
# Drop all datagrams destined for this host received from outside.
echo -n Dropping incoming datagrams... && {
$IPTABLES -A INPUT -i $ANYDEV -j DROP
} && echo done
# SPOOFING
# We should not accept any datagrams with a source address matching ours
# from the outside, so we deny them.
echo -n Preventing spoofing... && {
$IPTABLES -A FORWARD -s $OURNET -i $ANYDEV -j DROP
} && echo done
# SMURF
# Disallow ICMP to our broadcast address to prevent "Smurf" style attack.
echo -n Preventing SMURFs... && {
$IPTABLES -A FORWARD -p icmp -i $ANYDEV -d $OURNET -j DROP
} && echo done
# We should accept fragments, in iptables we must do this explicitly.
echo -n Accepting fragments... && {
$IPTABLES -A FORWARD -f -j ACCEPT
} && echo done
# TCP
# We will accept all TCP datagrams belonging to an existing connection
# (i.e. having the ACK bit set) for the TCP ports were allowing through.
# This should catch more than 95 % of all valid TCP packets.
echo -n Accepting valid incoming tcp datagrams on existing connections... && {
$IPTABLES -A FORWARD -m multiport -p tcp -d $OURNET --dports $TCPIN ! --tcp-flags SYN,ACK ACK -j ACCEPT
} && echo done
echo -n Accepting valid outgoing tcp datagrams on existing connections... && {
$IPTABLES -A FORWARD -m multiport -p tcp -s $OURNET --sports $TCPIN ! --tcp-flags SYN,ACK ACK -j ACCEPT
} && echo done
# TCP - INCOMING CONNECTIONS
# We will accept connection requests from the outside only on the
# allowed TCP ports.
echo -n Accepting incoming tcp connections on allowed ports... && {
$IPTABLES -A FORWARD -m multiport -p tcp -i $ANYDEV -d $OURNET --dports $TCPIN --syn -j ACCEPT
} && echo done
# TCP - OUTGOING CONNECTIONS
# We will accept all outgoing tcp connection requests on the allowed TCP ports.
echo -n Accepting outgoing traffic on allowed tcp ports... && {
$IPTABLES -A FORWARD -m multiport -p tcp -i $OURDEV -d $ANYADDR --dports $TCPOUT --syn -j ACCEPT
} && echo done
# UDP - INCOMING
# allow UDP datagrams in on the allowed ports and back.
echo -n Allowing UDP datagrams in on the allowed ports and back... && {
$IPTABLES -A FORWARD -m multiport -p udp -i $ANYDEV -d $OURNET --dports $UDPIN -j ACCEPT
$IPTABLES -A FORWARD -m multiport -p udp -i $ANYDEV -s $OURNET --sports $UDPIN -j ACCEPT
} && echo done
# UDP - OUTGOING
# We will allow UDP datagrams out to the allowed ports and back.
echo -n Allowing UDP datagrams out on the allowed ports and back... && {
$IPTABLES -A FORWARD -m multiport -p udp -i $OURDEV -d $ANYADDR --dports $UDPOUT -j ACCEPT
$IPTABLES -A FORWARD -m multiport -p udp -i $OURDEV -s $ANYADDR --sports $UDPOUT -j ACCEPT
} && echo done
# ICMP - INCOMING
# We will allow ICMP datagrams in of the allowed types.
# echo -n Allowing ICMP datagrams in of the allowed types... && {
# $IPTABLES -A FORWARD -p icmp -i $ANYDEV -d $OURNET --icmp-type $ICMPIN -j ACCEPT
# } && echo done
# ICMP - OUTGOING
# We will allow ICMP datagrams out of the allowed types.
# echo -n Allowing ICMP datagrams out of the allowed types... && {
# $IPTABLES -A FORWARD -p icmp -i $OURDEV -d $ANYADDR --icmp-type $ICMPOUT -j ACCEPT
# } && echo done
# DEFAULT and LOGGING
# All remaining datagrams fall through to the default
# rule and are dropped. They will be logged if youve
# configured the LOGGING variable above.
#
# DoS
# enabling Syn-flood protection
echo -n Enabling Syn-flood protection... && {
iptables -A FORWARD -p tcp --syn -m limit --limit 1/s -j ACCEPT
} && echo done
# Enabling Furtive port scanner protection
echo -n Enabling Furtive port scanner protection... && {
iptables -A FORWARD -p tcp --tcp-flags SYN,ACK,FIN,RST RST -m limit --limit 1/s -j ACCEPT
} && echo done
# Enabling ping of death protection
echo -n Enabling ping of death protection... && {
iptables -A FORWARD -p icmp --icmp-type echo-request -m limit --limit 1/s -j ACCEPT
} && echo done
if [ "$LOGGING" ]
then
# Log barred TCP
$IPTABLES -A FORWARD -m tcp -p tcp -j LOG
# Log barred UDP
$IPTABLES -A FORWARD -m udp -p udp -j LOG
# Log barred ICMP
$IPTABLES -A FORWARD -m udp -p icmp -j LOG
fi
#
# end.
Download (MB)
Added: 2007-02-14 License: GPL (GNU General Public License) Price:
982 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above imageshack us hosting service search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
