Free once used software for linux

onepad is a set of programs to encrypt files using one-time-pad encryption. This is an old but theoretically impossible to easily break way of encryption. I came across this method in Neal Stephensons Cryptonomicon.
It works by XOR-ing every byte in the cleartext message with a byte in the key. As long as every key is only used once, and the key is random, this is supposed to be unbreakable.
However, you need a secure way to exchange keys with the intended recipient. If a third party intercepts the key, it can read the messages.
NOTE: These programs work, but the genpad program relies on the /dev/random device to generate random keys. So the quality of the key and therefore the safety of this encryption method depends on the randomness of the /dev/random device on your system. So I cannot guarantee that the generated keys are totally random. Therefore, if you need really good encryption, use something like ccrypt or GNU Privacy Guard. These have been written, tested and pounded on by a lot of people, probably smarter than I am.
Enhancements:
- Changed to a BSD-style license.
- Makefile changed to build with BSD or GNU make.

Sysfence project is a resource monitoring tool designed for Linux machines. While running as daemon it checks resource levels and makes desired action if some values exceed safety limits.
Main features:
- notifying system administrators when something goes wrong,
- stopping services when system performance is dropping too low and starting them when its going up again,
- periodically restarting memory-leaking processes,
- dumping system statistics in critical situations
Usage
Sysfence reads its configuration from file(s) specified in argument list. Config files may contain one or more rules describing conditions and actions to be performed.
Rule has syntax like this:
if {
resource1 > limit1
or
{ resource2 < limit2 and resource3 < limit3 }
}
run once command-to-be-run
The block enclosed within {} brackets describes condition. When its result is TRUE, following command is invoked.
The once keyword is optional. If present, the command is executed only once after condition becomes TRUE. Next execution will take place only if condition becomes FALSE and then TRUE again. Without once keyword, command is invoked periodically, after every resource check that gives TRUE, no matter what was the condition result before.
Command specified right after run keyword is passed to /bin/sh, so it may contain more than one instruction or even whole script. But be careful - rule checking is suspended unless command execution has been completed! (Other rules are unaffected.)
As resources, following ones can be given:
- la1 - load average during last minute.
- la5 - load average during last 5 minutes.
- la15 - load average during last 15 minutes.
- memfree - lower limit for free memory amount.
- memused - upper limit for memory used by processes.
- swapfree - lower limit for free swap space.
- swapused - upper limit for swap space in use.
Enhancements:
- This release contains bugfix for wrong memory levels recognition on non-vanilla kernels.

mod_become module enables the web server to take on the access rights of a user & group, so that ~users can make available files to the web without having to make them readable by the world on the local file system. This can be useful for sites with a large number of users who want to apply file access controls among themselves. This module can also be applied to virtual hosts, directories, and locations.

When the server is configured with "User root" (see Security), then this module will behave as though the directive "MaxRequestsPerChild 1" were set for the server and "KeepAlive off" were set for the server and every virtual host where a mod_become directive appears, which essentially limits the server and those virtual hosts to HTTP/1.0 behaviour.

Therefore, for each request, this module will setuid() and setgid() the process handling the request based on one of the policies outlined below. Once the request is completed, the process will terminate. The parent server will be responsible for spawning a new child process to handle any future requests.

The source can be compiled to use seteuid() and setegid() instead of setuid() and setgid() (see the top of the Makefile), but is NOT the default. Use of seteuid() and setegid() can improve preformance by avoiding the need to kill the Apache child process between requests, but it DOES have significant security issues. For example modules like mod_php or mod_perl that provide APIs to seteuid() and setegid(), could be used to become root user once again and do what ever they want.

Essentially any module that is part of the Apache process space could revert to root user if they make use of seteuid() and setegid(). It is recommended that within mod_php, mod_perl, and other language modules that these APIs be disabled. CGIs that are launched as a separate process by Apache should, in theory, be safe, since the effective user and group ID become the real user and group ID of the child process and therefore cannot revert back to root (if I understand things correctly).

Configuration

The commands below can be added to the general Apache configuration file, httpd.conf.

User id
Context: global, < VirtualHost >

This is not part of mod_become, but is used to enable or disable mod_becomes behaviour, since mod_become can only function when "User root" is specified for the main server configuration. You need to compile Apache with -DBIG_SECURITY_HOLE in order to do this.

Become user id
Become group id
Context: server, < VirtualHost >, < Directory >, < Location >

Specify the user or group to be used by default. When the BecomePolicy is user-group, then these will always be used. If the main server configuration fails to set the default user and group, then an error 503 Service Unavailable and a error log entry may occur should these values be required.

BecomePolicy policy
Context: global, < VirtualHost >, < Directory >, < Location >

Specify the policy used to set the user & group ids of the child process:
file

The user & group of the requested file are used. Not recommend.
user-group

The default user & group specified are used. This is similar in behaviour to the Apache core directives User and Group. This is the default policy.
document-root

The user & group of the servers or virtual hosts document root is used.
parent-directory

The user & group of the requests parent directory is used. When the request corresponds to a directory, then it is used instead of its parent.

BecomeRoot boolean
Context: global, < VirtualHost >, < Directory >, < Location >

When true, mod_become will allow the process to operate as root user or group; otherwise a 403 Forbidden error and a error log entry will occur if the process attempts to become root user or group. By default this is set false.

FOicq is a Oicq clone can be used under FreeBSD, Linux platform, it will be added secure transation support.

Hoc (short from High Order Calculator) is an interpreted language for floating-point calculations. Its most basic use is as a powerful and convenient calculator, interactively evaluating expressions such as 1+2*sin(0.7). But hoc is no ordinary calculator: It also lets you assign values to variables, define your own functions, and use loops, conditionals, and everything else youd expect in a programming language.

The Hoc language was introduced and developed in the book The Unix Programming Environment, by Brian Kernighan and Rob Pike (Addison-Wesley, 1984). Countless people are indebted to this book, and its author, for introducing them to Unix and its fantastic programming tools like the shell, C, and Yacc. Some of these people were strongly impressed by Kernighan and Pikes feat of building an interpreter so easily (something which, before the advent of Yacc, was to be attempted only by experts).

One of these people was Nadav HarEl, the author of this package, who in 1986, as an 11 year old boy, typed in the source code of "Hoc 6" from the book, and started using it and once in a while added to it features that he wished for. This package is the result of almost a decade of such slow evolution of Hoc. It has numerous improvements over the books version, which are described below. The code was also modernized, to compile and run on a large variety of machines and compilers that appeared since 1984, and most importantly on ANSI C compilers (although the code should still work on a K&R C compiler, if you can find one in a museum).

Compiling and Installing:

First run configure, to generate the Makefile.

Then, compile and install hoc:

make

make install

Process Raw Images is a service menu for processing many raw images at once. Supports output to Jpeg, Png and Tiff.

GNU Aspell is a Free and Open Source spell checker designed to eventually replace Ispell. The project can either be used as a library or as an independent spell checker.
Its main feature is that it does a superior job of suggesting possible replacements for a misspelled word than just about any other spell checker out there for the English language. Unlike Ispell, Aspell can also easily check documents in UTF-8 without having to use a special dictionary.
Aspell will also do its best to respect the current locale setting. Other advantages over Ispell include support for using multiple dictionaries at once and intelligently handling personal dictionaries when more than one Aspell process is open at once.
Main features:
- Is an actual library that other programs can link to instead of having to use it through a pipe.
- Does a much better job of suggesting possible replacements for a misspelled word than Ispell does or for that matter any other spell checker I have seen. If you know a spell checker that does a better job please let me know.
- Can learn from users misspellings.
- Can easily check documents in UTF-8 without having to use a special dictionary.
- Has support for using multiple dictionaries at once.
- Is multiprocess intelligent. When a personal dictionary (or replacement list) is saved it will now first update the list against the dictionary on disk in case another process modified it.
- Can share the memory used in the main word list between processes.
- A better, more complete word list for the English language. Word lists are provided for American, British, and Canadian spelling. Special care has been taken to only include one spelling for each word in any particular word list. The word list included in Ispell by contrast only included support for American and British and also tends to included multiple spellings for a word which can mask some spelling errors.