postal 2 crack
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 6483
Postal 0.67
Postal is a SMTP and POP benchmark suite. more>>
Postal suite currently consists of two programs, Postal and Rabid. Postal (the mad postman) is a program that will deliver mail as fast as possible via the SMTP protocol to test mail server performance.
Rabid (the mad Biff) will eat mail via the POP protocol as fast as possible and measure POP server performance. All messages sent via Postal have MD5 checksums appended, and Rabid will check the MD5 to ensure that the messages are not being corrupted.
It works by taking a list of user names and applying random transformations to them to get the FROM and TO addresses, this is because if each email address takes 30 bytes of storage then 1,000,000 accounts would take 30M of RAM. 3,000,000 accounts would take 90M of RAM which would be more than the memory in my test machine (this would cause thrashing and make the benchmark invalid), and it would take ages to load all that data from the hard drive. Using 100,000 accounts and applying a transformation to map them to 30M accounts is a much more efficient use of resources.
When sending the mail the subject and body will be random data. A header field X-Postal will be used so that procmail can easily filter out such email just in case you accidentally put your own email address as one of the test addresses. ;)
For Debian the best thing to do is to do "apt-get install postal", if you dont want to use the version supplied with your version of Debian you can build a Debian package in the usual manner.
Change to the directory containing the unpacked source and use the command:
dpkg-buildpackage -rfakeroot -tc -us
That will create a .deb in the parent directory.
For Red Hat etc there is a portslave.spec file to allow for building with
the "rpm -b" command.
For Solaris use the command "make -C sun" to build a package in /var/spool/pkg
(make sure you have write access to that directory).
For other Unix setup "./configure ; make install" should do an install.
Enhancements:
- The license was changed to GPLv3.
<<lessRabid (the mad Biff) will eat mail via the POP protocol as fast as possible and measure POP server performance. All messages sent via Postal have MD5 checksums appended, and Rabid will check the MD5 to ensure that the messages are not being corrupted.
It works by taking a list of user names and applying random transformations to them to get the FROM and TO addresses, this is because if each email address takes 30 bytes of storage then 1,000,000 accounts would take 30M of RAM. 3,000,000 accounts would take 90M of RAM which would be more than the memory in my test machine (this would cause thrashing and make the benchmark invalid), and it would take ages to load all that data from the hard drive. Using 100,000 accounts and applying a transformation to map them to 30M accounts is a much more efficient use of resources.
When sending the mail the subject and body will be random data. A header field X-Postal will be used so that procmail can easily filter out such email just in case you accidentally put your own email address as one of the test addresses. ;)
For Debian the best thing to do is to do "apt-get install postal", if you dont want to use the version supplied with your version of Debian you can build a Debian package in the usual manner.
Change to the directory containing the unpacked source and use the command:
dpkg-buildpackage -rfakeroot -tc -us
That will create a .deb in the parent directory.
For Red Hat etc there is a portslave.spec file to allow for building with
the "rpm -b" command.
For Solaris use the command "make -C sun" to build a package in /var/spool/pkg
(make sure you have write access to that directory).
For other Unix setup "./configure ; make install" should do an install.
Enhancements:
- The license was changed to GPLv3.
Download (0.083MB)
Added: 2007-07-02 License: GPL v3 Price:
1223 downloads
aircrack 2.41
aircrack is a 802.11 sniffer and WEP/WPA key cracker. more>>
aircrack is a 802.11 sniffer and WEP/WPA key cracker.
It consists of: airodump (an 802.11 packet capture program), aireplay (an 802.11 packet injection program), aircrack (static WEP and WPA-PSK cracking), and airdecap (decrypts WEP/WPA capture files).
Enhancements:
- airodump: show probing clients as "not associated"
- airodump: dont substract the noise level unless madwifi
- airodump: fixed channel hopping with old orinoco
- airmon.sh: added detection of the zd1211 driver
<<lessIt consists of: airodump (an 802.11 packet capture program), aireplay (an 802.11 packet injection program), aircrack (static WEP and WPA-PSK cracking), and airdecap (decrypts WEP/WPA capture files).
Enhancements:
- airodump: show probing clients as "not associated"
- airodump: dont substract the noise level unless madwifi
- airodump: fixed channel hopping with old orinoco
- airmon.sh: added detection of the zd1211 driver
Download (0.077MB)
Added: 2005-11-28 License: GPL (GNU General Public License) Price:
18823 downloads
mojoPortal 2.2.2.8
mojoPortal project is an Object Oriented web site framework. more>>
mojoPortal project is an Object Oriented web site framework written in C# that runs under ASP.NET on Windows or under mono on GNU/Linux or Mac OS X.
Main features:
- Runs under Windows/IIS or mono/Apache with most GNU/Linux distributions or Mac OS X
- Works with MS SQL Server, MySQL, or PostgreSQL databases
- Host multiple sites on 1 installation and db with host names
- Content Management with support for work flow and approval/publishing process
- Enter content with the FCKeditor HTML WYSIWYG
- Blogs
- Forums
- Image Gallery
- RSS Feed Aggregator
- Event Calendar
- Contact Form
- File Manager - use with caution, provides direct access to the server file system.
- Shared Files module - looks and acts like the File Manager module but stores and manages files in a safe way on the server. Folders are really database items as are the friendly file names. Files are stored securely in a special folder and named using guid strings and a .config extension. This prevents them from being requested or served with a normal http request. Authorized users can download because the module serves them using Response.WriteFile. The module also supports versioning of files.
- User Profile Page
- Member List Page
- Bread Crumbs
- Custom Skinning based on Paul Wilsons MasterPages with support for user selectable skins and individual skins per page
- Dynamic HTML Cross Browser Menu using Scott Mitchells skmMenu
- Localization - all labels and image alt text comes from a configuration file
- Configurable Whether to Encrypt Passwords
- Configurable Whether Registration requires e-mail confirmation
- Configure use of SSL for the whole Site or per Page
- Send Password Feature (when not using encryption)
- Url Re-writing for mapping friendly Urls to site pages
- Site Search with Role based filtering
- Error logging and optional debug logging
mojoPortal is being developed/managed by Joe Audette, MCSD, MCDBA, MCSE, I named it after my dog Mojo.
Enhancements:
- mojoPortal 2.x now works on Mono, so mojoPortal 1.x is being retired.
- New features include multi-site support based on folders or host names.
- The editor provider model has support for both FCKeditor and TinyMCE.
- This release has improved markup semantics and CSS organization.
<<lessMain features:
- Runs under Windows/IIS or mono/Apache with most GNU/Linux distributions or Mac OS X
- Works with MS SQL Server, MySQL, or PostgreSQL databases
- Host multiple sites on 1 installation and db with host names
- Content Management with support for work flow and approval/publishing process
- Enter content with the FCKeditor HTML WYSIWYG
- Blogs
- Forums
- Image Gallery
- RSS Feed Aggregator
- Event Calendar
- Contact Form
- File Manager - use with caution, provides direct access to the server file system.
- Shared Files module - looks and acts like the File Manager module but stores and manages files in a safe way on the server. Folders are really database items as are the friendly file names. Files are stored securely in a special folder and named using guid strings and a .config extension. This prevents them from being requested or served with a normal http request. Authorized users can download because the module serves them using Response.WriteFile. The module also supports versioning of files.
- User Profile Page
- Member List Page
- Bread Crumbs
- Custom Skinning based on Paul Wilsons MasterPages with support for user selectable skins and individual skins per page
- Dynamic HTML Cross Browser Menu using Scott Mitchells skmMenu
- Localization - all labels and image alt text comes from a configuration file
- Configurable Whether to Encrypt Passwords
- Configurable Whether Registration requires e-mail confirmation
- Configure use of SSL for the whole Site or per Page
- Send Password Feature (when not using encryption)
- Url Re-writing for mapping friendly Urls to site pages
- Site Search with Role based filtering
- Error logging and optional debug logging
mojoPortal is being developed/managed by Joe Audette, MCSD, MCDBA, MCSE, I named it after my dog Mojo.
Enhancements:
- mojoPortal 2.x now works on Mono, so mojoPortal 1.x is being retired.
- New features include multi-site support based on folders or host names.
- The editor provider model has support for both FCKeditor and TinyMCE.
- This release has improved markup semantics and CSS organization.
Download (MB)
Added: 2007-06-25 License: GPL (GNU General Public License) Price:
861 downloads
Postal 2: Share the Pain DEMO 1407
Postal 2: Share the Pain DEMO is a FPS game for Linux. more>> <<less
Download (167.3MB)
Added: 2006-03-17 License: Freeware Price:
1015 downloads
Leptons Crack 20040914
Leptons Crack is a generic password cracker, easily customizable with a simple plug-in system. more>>
Leptons Crack is a generic password cracker, easily customizable with a simple plug-in system. COPYRIGHT=1]
For the incremental scan, the user can provide a regex-like expression
that will be enumerated, thus checking every possible combination. This
powerful feature effectively combines `shoulder-surfing with standard
brute-forcing.
http://usuarios.lycos.es/reinob/lcrack/lcrack-20040914.tar.gz
By default it comes with the following modules:
md4 : standard MD4 hash
md5 : standard MD5 hash
nt4 : NT MD4/Unicode
dom : Lotus Domino HTTP password
sha1 : standard SHA-1 hash
null : trivial 1-byte hash
(sample for plug-in developers
Enhancements:
- Added support for any ASCII character (ie. also non-printable) in the charset and regex definition, via (octal), x(hex), (decimal)
<<lessFor the incremental scan, the user can provide a regex-like expression
that will be enumerated, thus checking every possible combination. This
powerful feature effectively combines `shoulder-surfing with standard
brute-forcing.
http://usuarios.lycos.es/reinob/lcrack/lcrack-20040914.tar.gz
By default it comes with the following modules:
md4 : standard MD4 hash
md5 : standard MD5 hash
nt4 : NT MD4/Unicode
dom : Lotus Domino HTTP password
sha1 : standard SHA-1 hash
null : trivial 1-byte hash
(sample for plug-in developers
Enhancements:
- Added support for any ASCII character (ie. also non-printable) in the charset and regex definition, via (octal), x(hex), (decimal)
Download (0.038MB)
Added: 2006-07-06 License: GPL (GNU General Public License) Price:
1233 downloads
Aircrack-ng 0.9.1
Aircrack-ng is a set of tools for auditing wireless networks. more>>
Aircrack-ng is a set of tools for auditing wireless networks.
- airodump: 802.11 packet capture program
- aireplay: 802.11 packet injection program
- aircrack: static WEP and WPA-PSK key cracker
- airdecap: decrypts WEP/WPA capture files
Aircrack-ng is the next generation of aircrack with lots of new features.
How do I crack a static WEP key ?
The basic idea is to capture as much encrypted traffic as possible using airodump. Each WEP data packet has an associated 3-byte Initialization Vector (IV): after a sufficient number of data packets have been collected, run aircrack on the resulting capture file. aircrack will then perform a set of statistical attacks developped by a talented hacker named KoreK.
How do I know my WEP key is correct ?
There are two authentication modes for WEP:
Open-System Authentication: this is the default mode. All clients are accepted by the AP, and the key is never checked: association is always granted. However if your key is incorrect you wont be able to receive or send packets (because decryption will fail), so DHCP, ping etc. will timeout.
Shared-Key Authentication: the client has to encrypt a challenge before association is granted by the AP. This mode is flawed and leads to keystream recovery, so its never enabled by default.
In summary, just because you seem to have successfully connected to the access point doesnt mean your WEP key is correct ! To check your WEP key, try to decrypt a capture file with the airdecap program.
How many IVs are required to crack WEP ?
WEP cracking is not an exact science. The number of required IVs depends on the WEP key length, and it also depends on your luck. Usually, 40-bit WEP can be cracked with 300.000 IVs, and 104-bit WEP can be cracked with 1.000.000 IVs; if youre out of luck you may need two million IVs, or more.
Theres no way to know the WEP key length: this information is kept hidden and never announced, either in management or data packets; as a consequence, airodump can not report the WEP key length. Thus, it is recommended to run aircrack twice: when you have 250.000 IVs, start aircrack with "-n 64" to crack 40-bit WEP. Then if the key isnt found, restart aircrack (without the -n option) to crack 104-bit WEP.
Enhancements:
- This release adds an ACX injection patch, and updates the rtl8187 patch for 2.6.21.
- It fixes madwifi-ng detection with airmon-ng.
- It fixes 2 bugs in aircrack-ng related to WPA cracking.
- It fixes an old Debian bug (#417388).
- It fixes the use of wlanng, and fixes IP address writing in the CSV file with airodump-ng.
- It fixes a bug in the GUI for Windows and adds a PTW option.
<<less- airodump: 802.11 packet capture program
- aireplay: 802.11 packet injection program
- aircrack: static WEP and WPA-PSK key cracker
- airdecap: decrypts WEP/WPA capture files
Aircrack-ng is the next generation of aircrack with lots of new features.
How do I crack a static WEP key ?
The basic idea is to capture as much encrypted traffic as possible using airodump. Each WEP data packet has an associated 3-byte Initialization Vector (IV): after a sufficient number of data packets have been collected, run aircrack on the resulting capture file. aircrack will then perform a set of statistical attacks developped by a talented hacker named KoreK.
How do I know my WEP key is correct ?
There are two authentication modes for WEP:
Open-System Authentication: this is the default mode. All clients are accepted by the AP, and the key is never checked: association is always granted. However if your key is incorrect you wont be able to receive or send packets (because decryption will fail), so DHCP, ping etc. will timeout.
Shared-Key Authentication: the client has to encrypt a challenge before association is granted by the AP. This mode is flawed and leads to keystream recovery, so its never enabled by default.
In summary, just because you seem to have successfully connected to the access point doesnt mean your WEP key is correct ! To check your WEP key, try to decrypt a capture file with the airdecap program.
How many IVs are required to crack WEP ?
WEP cracking is not an exact science. The number of required IVs depends on the WEP key length, and it also depends on your luck. Usually, 40-bit WEP can be cracked with 300.000 IVs, and 104-bit WEP can be cracked with 1.000.000 IVs; if youre out of luck you may need two million IVs, or more.
Theres no way to know the WEP key length: this information is kept hidden and never announced, either in management or data packets; as a consequence, airodump can not report the WEP key length. Thus, it is recommended to run aircrack twice: when you have 250.000 IVs, start aircrack with "-n 64" to crack 40-bit WEP. Then if the key isnt found, restart aircrack (without the -n option) to crack 104-bit WEP.
Enhancements:
- This release adds an ACX injection patch, and updates the rtl8187 patch for 2.6.21.
- It fixes madwifi-ng detection with airmon-ng.
- It fixes 2 bugs in aircrack-ng related to WPA cracking.
- It fixes an old Debian bug (#417388).
- It fixes the use of wlanng, and fixes IP address writing in the CSV file with airodump-ng.
- It fixes a bug in the GUI for Windows and adds a PTW option.
Download (0.16MB)
Added: 2007-06-26 License: GPL (GNU General Public License) Price:
6000 downloads
Lipstik 2.2.2
Lipstik is a fast and clean style for KDE3 with many options to tune your desktop look. more>>
Lipstik is a fast and clean style for KDE3 with many options to tune your desktop look.
Just try it!
INSTALLATION:
Please read the INSTALL file.
CONFIGURATION:
You can find many options in the styles configuration panel. Go to Settings/Appearance & Themes/Style and click on the configure button.
BUGS:
Read the BUGS file; if the issue is not reported, post a comment below, Ill try to read them often.
<<lessJust try it!
INSTALLATION:
Please read the INSTALL file.
CONFIGURATION:
You can find many options in the styles configuration panel. Go to Settings/Appearance & Themes/Style and click on the configure button.
BUGS:
Read the BUGS file; if the issue is not reported, post a comment below, Ill try to read them often.
Download (0.41MB)
Added: 2007-04-13 License: GPL (GNU General Public License) Price:
924 downloads
Polyglot 2.2.2
Polyglot is a highly extensible compiler front end for the Java programming language. more>>
Polyglot is a highly extensible compiler front end for the Java programming language. The project is implemented as a Java class framework using design patterns to promote extensibility. Using Polyglot, language extensions can be implemented without duplicating code from the framework itself.
Polyglot has been used to implement domain-specific languages, to explore language design ideas, to simplify Java for pedagogical purposes, and for various code transformations such as optimization and fault injection. Polyglot has been used for both major and minor language extensions; our experience suggests that the cost of implementing an extension scales well with the degree to which it modifies Java.
Polyglot compiles and runs on (at least) Linux, Solaris, Windows, and Mac OS X. Ant and the JFlex scanner generator are required to build it. On Windows, you will also need Cygwin.
Polyglot includes PPG, an extensible LALR parser generator based on the CUP LALR parser generator for Java (extended with improved debugging support).
Polyglot supports Java version 1.4, but a Polyglot extension that supports Java 5. has been developed at UCLA.
A version of Polyglot written in the J& language is also under development. It makes extending the base compiler even easier.
Enhancements:
- Miscellaneous bugfixes.
- An assumption that return statements occur only within methods has been fixed.
- A copy(NodeFactory) method has been added to the Node interface to generate a new version of a node with a different node factory.
<<lessPolyglot has been used to implement domain-specific languages, to explore language design ideas, to simplify Java for pedagogical purposes, and for various code transformations such as optimization and fault injection. Polyglot has been used for both major and minor language extensions; our experience suggests that the cost of implementing an extension scales well with the degree to which it modifies Java.
Polyglot compiles and runs on (at least) Linux, Solaris, Windows, and Mac OS X. Ant and the JFlex scanner generator are required to build it. On Windows, you will also need Cygwin.
Polyglot includes PPG, an extensible LALR parser generator based on the CUP LALR parser generator for Java (extended with improved debugging support).
Polyglot supports Java version 1.4, but a Polyglot extension that supports Java 5. has been developed at UCLA.
A version of Polyglot written in the J& language is also under development. It makes extending the base compiler even easier.
Enhancements:
- Miscellaneous bugfixes.
- An assumption that return statements occur only within methods has been fixed.
- A copy(NodeFactory) method has been added to the Node interface to generate a new version of a node with a different node factory.
Download (MB)
Added: 2007-06-11 License: Eclipse Public License Price:
946 downloads
Password Cracking Library 2.0c.1
Password Cracking Library allows you to write own password cracking software. more>>
Password Cracking Library allows you to write own password cracking software.
Main features:
- powerful dictionary attack with word modifiers
- brute force (with or without known chars) attack
- misspelled password recovery, and more
Enhancements:
- Any (european) language and encoding support
- User-defined charsets
- New modifiers, including user-defined conversion tables
- Timing and benchmarking functions
- Any password length
<<lessMain features:
- powerful dictionary attack with word modifiers
- brute force (with or without known chars) attack
- misspelled password recovery, and more
Enhancements:
- Any (european) language and encoding support
- User-defined charsets
- New modifiers, including user-defined conversion tables
- Timing and benchmarking functions
- Any password length
Download (0.037MB)
Added: 2006-01-12 License: GPL (GNU General Public License) Price:
1418 downloads
track2rss 0.4.1
track2rss is a set of scripts for tracking UPS, Fedex, and USPS packages via RSS. more>>
track2rss project seeks to provide a set of scripts for converting tracking information for packages from various carriers to the RSS format.
It was inspired by a similar project written by Jason Young. Currently support is provided for UPS, Fedex Air and Ground, and the US Postal Service (USPS) via a set of XSLT templates and a Perl wrapper.
Future plans are to extend support to more carriers such as DHL, etc.; possibly other formats such as Atom, and other languages like PHP, Java, etc.
Enhancements:
- This release auto-guessing for carrier type when type not provided.
- It adds gzip support to reduce bandwidth.
- The output MIME type has been changed to text/xml.
- OpenSearch 1.0 support has been added.
<<lessIt was inspired by a similar project written by Jason Young. Currently support is provided for UPS, Fedex Air and Ground, and the US Postal Service (USPS) via a set of XSLT templates and a Perl wrapper.
Future plans are to extend support to more carriers such as DHL, etc.; possibly other formats such as Atom, and other languages like PHP, Java, etc.
Enhancements:
- This release auto-guessing for carrier type when type not provided.
- It adds gzip support to reduce bandwidth.
- The output MIME type has been changed to text/xml.
- OpenSearch 1.0 support has been added.
Download (0.023MB)
Added: 2005-11-03 License: The Apache License 2.0 Price:
1451 downloads
EverCrack 1.1.0
EverCrack is a cryptanalysis engine. more>>
EverCrack project is a cryptanalysis engine. The overall design goal is to systematically break down complex ciphers into their simplex components for cryptanalysis (by the kernel).
The kernel consists of an algebraic design (comparison and reduction) for breaking uniliteral, monoalphabetic ciphers instantaneously.
Currently, it can break a 4000-word cipher in milliseconds. EverCrack currently has multi-language support for the user interface and cracking encryption in other language dictionaries (English, German, French, Spanish, Italian, Swedish, Dutch, and Portuguese).
Enhancements:
- The dictionary set has been changed to lists of words by exact pattern.
- This reduces the search space completely and increases the speed by approximately 30%.
- Older dictionaries will not work with this release.
<<lessThe kernel consists of an algebraic design (comparison and reduction) for breaking uniliteral, monoalphabetic ciphers instantaneously.
Currently, it can break a 4000-word cipher in milliseconds. EverCrack currently has multi-language support for the user interface and cracking encryption in other language dictionaries (English, German, French, Spanish, Italian, Swedish, Dutch, and Portuguese).
Enhancements:
- The dictionary set has been changed to lists of words by exact pattern.
- This reduces the search space completely and increases the speed by approximately 30%.
- Older dictionaries will not work with this release.
Download (0.61MB)
Added: 2006-10-09 License: GPL (GNU General Public License) Price:
1112 downloads
Ophcrack LiveCD 1.1.4
Ophcrack is a Windows password cracker based on rainbow tables. more>>
Ophcrack is a Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method.
The project comes with a GTK+ Graphical User Interface and runs on Windows, Mac OS X (Intel CPU) as well as on Linux.
Main features:
- Runs on Windows, Linux and Mac OS X (intel).
- Cracks LM and NTLM hashes.
- Free tables available for alphanumeric LM hashes.
- Loads hashes from local SAM, remote SAM.
- Loads hashes from encrypted SAM recovered from a Windows partition.
The ophcrack LiveCD contains a full linux system (SLAX), ophcrack for linux and rainbow tables for alphanumerical passwords.
The liveCD cracks passwords automatically, no installation necessary, no admin passwort necessary (as long as you can boot from cd).
Enhancements:
- Vista support with the latest version of ophcrack (2.3.4)
- Easier to changes tables
<<lessThe project comes with a GTK+ Graphical User Interface and runs on Windows, Mac OS X (Intel CPU) as well as on Linux.
Main features:
- Runs on Windows, Linux and Mac OS X (intel).
- Cracks LM and NTLM hashes.
- Free tables available for alphanumeric LM hashes.
- Loads hashes from local SAM, remote SAM.
- Loads hashes from encrypted SAM recovered from a Windows partition.
The ophcrack LiveCD contains a full linux system (SLAX), ophcrack for linux and rainbow tables for alphanumerical passwords.
The liveCD cracks passwords automatically, no installation necessary, no admin passwort necessary (as long as you can boot from cd).
Enhancements:
- Vista support with the latest version of ophcrack (2.3.4)
- Easier to changes tables
Download (462.2MB)
Added: 2007-06-22 License: GPL (GNU General Public License) Price:
821 downloads
crackblock 0.1-1
crackblock is a daemon that monitors your /var/log/secure for ssh login failures and blocks brute-force password crack attempts. more>>
crackblock is a daemon that monitors your /var/log/secure for brute-force password crack attempts and ssh login failures.
The rpm should install on any rpm based system and requires iptables, tail, PERL, and PERLs syslog features. All of which are probably already installed on your system.
<<lessThe rpm should install on any rpm based system and requires iptables, tail, PERL, and PERLs syslog features. All of which are probably already installed on your system.
Download (0.005MB)
Added: 2006-04-20 License: GPL (GNU General Public License) Price:
1283 downloads
iptables firewall script 0.5
iptables firewall script is an Linux firewall based on the iptables software. more>>
iptables firewall script is an Linux firewall based on the iptables software.
Sample:
######## START FUNCTIONS #########
scripthelp () {
cat /dev/null 2>&1
Every 5 minutes
*/5 * * * * /path/to/this/script restart > /dev/null 2>&1
refresh
-------
Dumps current rules and reloads them.
stop
----
Dumps current rules and halts firewall.
---------------------------------------------------------
Usage: $0 [start|restart|refresh|stop]
SCRIPTHELP
}
fireme () {
if [ -z "`lsmod|grep iptable_filter`" ];
then
modprobe iptable_filter
fi
#######################################
#---------- Start predefined target rulesets ----------#
#######################################
# On the fly
$PROG -N ONTHEFLY
$PROG -A ONTHEFLY -j LOG --log-level 5 --log-prefix "TL0G_ONTHEFLY: "
$PROG -A ONTHEFLY -j DROP
# DENIED PORTS Privileged (1-1023) Target Ruleset
$PROG -N DENIED_PORT_PRIV
$PROG -A DENIED_PORT_PRIV -m state --state RELATED,ESTABLISHED -j ACCEPT
$PROG -A DENIED_PORT_PRIV -j LOG --log-level 5 --log-prefix "TL0G_DENIED_PORT_PRIV: "
$PROG -A DENIED_PORT_PRIV -j DROP
# DENIED PORTS Unprivileged TCP (1024+) Target Ruleset
$PROG -N DENIED_PORT_UNPRIV_TCP
$PROG -A DENIED_PORT_UNPRIV_TCP -m state --state RELATED,ESTABLISHED -j ACCEPT
$PROG -A DENIED_PORT_UNPRIV_TCP -j LOG --log-level 5 --log-prefix "TL0G_DENIED_PORT_T-UNPRIV: "
$PROG -A DENIED_PORT_UNPRIV_TCP -m state --state NEW,INVALID -j DROP
# DENIED PORTS Unprivileged UDP (1024+) Target Ruleset
$PROG -N DENIED_PORT_UNPRIV_UDP
$PROG -A DENIED_PORT_UNPRIV_UDP -j LOG --log-level 5 --log-prefix "TL0G_DENIED_PORT_U-UNPRIV: "
$PROG -A DENIED_PORT_UNPRIV_UDP -j DROP
#######################################
#---------- End predefined target rulesets ----------#
######################################
# Services
$PROG -A INPUT -p tcp --dport 0:112 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
$PROG -A INPUT -p udp --dport 0:112 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
$PROG -A INPUT -p tcp --dport 114:1023 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
$PROG -A INPUT -p udp --dport 114:1023 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
# NFS
$PROG -A INPUT -p tcp --dport 2049 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
$PROG -A INPUT -p udp --dport 2049 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_UDP
# X11
$PROG -A INPUT -p tcp --dport 6000:6005 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
$PROG -A INPUT -p udp --dport 6000:6005 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_UDP
# Netbus
$PROG -A INPUT -p tcp --dport 12345:12346 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
$PROG -A INPUT -p udp --dport 12345:12346 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_UDP
# Deny all else on TCP unless initiated from local machine/network.
# This rule covers NFS, X11, and Netbus listed above, its a catch-all for any TCP
# ports you may have services running on, but dont know what ports they use.
# Prevents an accidental crack attempt via TCP services.
# If you wish to allow any services, or alter the existing rules, they must be
# added BEFORE the rule below.
$PROG -A INPUT -p tcp --dport 1024:65535 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
echo "[ [32;01mOK [0m]"
echo "rc.firewall loaded with IP: $IP and interface: $IFACE."
}
########################### END FUNCTIONS ##########################
##############################################
#----------------- START CONFIGURATION SECTION --------------------#
##############################################
# Set path to iptables program
PROG=/path/to/iptables
# Set interface type, ie; eth0, ppp0
IFACE=""
###############################################
#------------------ END CONFIGURATION SECTION ---------------------#
##############################################
# Test to make sure configuration variables are set, die if not.
if [ ! -x "$PROG" ] || [ -z "$IFACE" ];
then
echo "$PROG is not executable, or interface is not set, exiting."
exit 0
else
# Get current IP address
IP=`ifconfig $IFACE| grep inet| cut -f2 -d:| cut -f1 -d" "`
# Get old IP from last firewall load (if any).
# The purpose of getting OLDIP is so you can use this script in a cron
# job to update the firewall with the current IP, great for dialups
# and other dynamic connections.
# Examples:
# Check every 15 minutes:
# */15 * * * * /path/to/this/script restart > /dev/null 2>&1
# Check every 5 minutes:
# */5 * * * * /path/to/this/script restart > /dev/null 2>&1
OLDIP=`$PROG -n -L INPUT| grep 6005|grep udp| cut -b55-|cut -f1 -d u`
case $1 in
start)
if [ -z "$OLDIP" ];
then
echo -n "Starting firewall..."
fireme
elif [ $IP = $OLDIP ];
then
echo "FIREWALL IS UPDATED."
fi
;;
restart)
echo -n "Restarting firewall..."
if [ -z "`$PROG -n -L INPUT| grep 6005`" ];
then
fireme
elif [ $IP = $OLDIP ];
then
echo "FIREWALL IS UPDATED."
else
for i in DENIED_PORT_PRIV DENIED_PORT_UNPRIV_TCP DENIED_PORT_UNPRIV_UDP ONTHEFLY
do
$PROG -F $i
$PROG -F INPUT
$PROG -F FORWARD
$PROG -X $i
done
fireme
fi
;;
refresh)
echo -n "Resetting firewall..."
if [ -z "`$PROG -n -L INPUT| grep 6005`" ];
then
fireme
else
for i in DENIED_PORT_PRIV DENIED_PORT_UNPRIV_TCP DENIED_PORT_UNPRIV_UDP ONTHEFLY
do
$PROG -F $i
$PROG -F INPUT
$PROG -F FORWARD
$PROG -X $i
done
fireme
fi
;;
stop)
for i in DENIED_PORT_PRIV DENIED_PORT_UNPRIV_TCP DENIED_PORT_UNPRIV_UDP ONTHEFLY
do
$PROG -F $i
$PROG -F INPUT
$PROG -F FORWARD
$PROG -X $i
done
echo "Firewall stopped...[ [32;01mOK [0m]"
;;
*)
echo
scripthelp
;;
esac
fi
<<lessSample:
######## START FUNCTIONS #########
scripthelp () {
cat /dev/null 2>&1
Every 5 minutes
*/5 * * * * /path/to/this/script restart > /dev/null 2>&1
refresh
-------
Dumps current rules and reloads them.
stop
----
Dumps current rules and halts firewall.
---------------------------------------------------------
Usage: $0 [start|restart|refresh|stop]
SCRIPTHELP
}
fireme () {
if [ -z "`lsmod|grep iptable_filter`" ];
then
modprobe iptable_filter
fi
#######################################
#---------- Start predefined target rulesets ----------#
#######################################
# On the fly
$PROG -N ONTHEFLY
$PROG -A ONTHEFLY -j LOG --log-level 5 --log-prefix "TL0G_ONTHEFLY: "
$PROG -A ONTHEFLY -j DROP
# DENIED PORTS Privileged (1-1023) Target Ruleset
$PROG -N DENIED_PORT_PRIV
$PROG -A DENIED_PORT_PRIV -m state --state RELATED,ESTABLISHED -j ACCEPT
$PROG -A DENIED_PORT_PRIV -j LOG --log-level 5 --log-prefix "TL0G_DENIED_PORT_PRIV: "
$PROG -A DENIED_PORT_PRIV -j DROP
# DENIED PORTS Unprivileged TCP (1024+) Target Ruleset
$PROG -N DENIED_PORT_UNPRIV_TCP
$PROG -A DENIED_PORT_UNPRIV_TCP -m state --state RELATED,ESTABLISHED -j ACCEPT
$PROG -A DENIED_PORT_UNPRIV_TCP -j LOG --log-level 5 --log-prefix "TL0G_DENIED_PORT_T-UNPRIV: "
$PROG -A DENIED_PORT_UNPRIV_TCP -m state --state NEW,INVALID -j DROP
# DENIED PORTS Unprivileged UDP (1024+) Target Ruleset
$PROG -N DENIED_PORT_UNPRIV_UDP
$PROG -A DENIED_PORT_UNPRIV_UDP -j LOG --log-level 5 --log-prefix "TL0G_DENIED_PORT_U-UNPRIV: "
$PROG -A DENIED_PORT_UNPRIV_UDP -j DROP
#######################################
#---------- End predefined target rulesets ----------#
######################################
# Services
$PROG -A INPUT -p tcp --dport 0:112 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
$PROG -A INPUT -p udp --dport 0:112 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
$PROG -A INPUT -p tcp --dport 114:1023 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
$PROG -A INPUT -p udp --dport 114:1023 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_PRIV
# NFS
$PROG -A INPUT -p tcp --dport 2049 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
$PROG -A INPUT -p udp --dport 2049 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_UDP
# X11
$PROG -A INPUT -p tcp --dport 6000:6005 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
$PROG -A INPUT -p udp --dport 6000:6005 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_UDP
# Netbus
$PROG -A INPUT -p tcp --dport 12345:12346 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
$PROG -A INPUT -p udp --dport 12345:12346 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_UDP
# Deny all else on TCP unless initiated from local machine/network.
# This rule covers NFS, X11, and Netbus listed above, its a catch-all for any TCP
# ports you may have services running on, but dont know what ports they use.
# Prevents an accidental crack attempt via TCP services.
# If you wish to allow any services, or alter the existing rules, they must be
# added BEFORE the rule below.
$PROG -A INPUT -p tcp --dport 1024:65535 -s 0/0 -d $IP -i $IFACE -j DENIED_PORT_UNPRIV_TCP
echo "[ [32;01mOK [0m]"
echo "rc.firewall loaded with IP: $IP and interface: $IFACE."
}
########################### END FUNCTIONS ##########################
##############################################
#----------------- START CONFIGURATION SECTION --------------------#
##############################################
# Set path to iptables program
PROG=/path/to/iptables
# Set interface type, ie; eth0, ppp0
IFACE=""
###############################################
#------------------ END CONFIGURATION SECTION ---------------------#
##############################################
# Test to make sure configuration variables are set, die if not.
if [ ! -x "$PROG" ] || [ -z "$IFACE" ];
then
echo "$PROG is not executable, or interface is not set, exiting."
exit 0
else
# Get current IP address
IP=`ifconfig $IFACE| grep inet| cut -f2 -d:| cut -f1 -d" "`
# Get old IP from last firewall load (if any).
# The purpose of getting OLDIP is so you can use this script in a cron
# job to update the firewall with the current IP, great for dialups
# and other dynamic connections.
# Examples:
# Check every 15 minutes:
# */15 * * * * /path/to/this/script restart > /dev/null 2>&1
# Check every 5 minutes:
# */5 * * * * /path/to/this/script restart > /dev/null 2>&1
OLDIP=`$PROG -n -L INPUT| grep 6005|grep udp| cut -b55-|cut -f1 -d u`
case $1 in
start)
if [ -z "$OLDIP" ];
then
echo -n "Starting firewall..."
fireme
elif [ $IP = $OLDIP ];
then
echo "FIREWALL IS UPDATED."
fi
;;
restart)
echo -n "Restarting firewall..."
if [ -z "`$PROG -n -L INPUT| grep 6005`" ];
then
fireme
elif [ $IP = $OLDIP ];
then
echo "FIREWALL IS UPDATED."
else
for i in DENIED_PORT_PRIV DENIED_PORT_UNPRIV_TCP DENIED_PORT_UNPRIV_UDP ONTHEFLY
do
$PROG -F $i
$PROG -F INPUT
$PROG -F FORWARD
$PROG -X $i
done
fireme
fi
;;
refresh)
echo -n "Resetting firewall..."
if [ -z "`$PROG -n -L INPUT| grep 6005`" ];
then
fireme
else
for i in DENIED_PORT_PRIV DENIED_PORT_UNPRIV_TCP DENIED_PORT_UNPRIV_UDP ONTHEFLY
do
$PROG -F $i
$PROG -F INPUT
$PROG -F FORWARD
$PROG -X $i
done
fireme
fi
;;
stop)
for i in DENIED_PORT_PRIV DENIED_PORT_UNPRIV_TCP DENIED_PORT_UNPRIV_UDP ONTHEFLY
do
$PROG -F $i
$PROG -F INPUT
$PROG -F FORWARD
$PROG -X $i
done
echo "Firewall stopped...[ [32;01mOK [0m]"
;;
*)
echo
scripthelp
;;
esac
fi
Download (MB)
Added: 2007-02-14 License: GPL (GNU General Public License) Price:
986 downloads
NIST 2.2.2
The NIST Implementation of the Ad-Hoc On Demand Distance Vector protocol is a kernel-level driver for Linux . more>>
The NIST Implementation of the Ad-Hoc On Demand Distance Vector protocol is a kernel-level driver for Linux . AODV is a routing protocol for ad hoc networks designed with mobile wireless devices in mind. For a quick overview on AODVs basics, check out our Quick Guide to AODV page. If you are interested in running a simulation of AODV, NIST has developed a simulation in OPNET.
Kernel AODV is a loadable kernel module for Linux. It implements AODV routing between computers equipped with WLAN interfaces.
This software was developed at the National Institute of Standards and Technology by employees of the Federal Government in the course of their official duties. Pursuant to title 17 Section 105 of the United States Code this software is not subject to copyright protection and is in the public domain. Kernel AODV is an experimental system. NIST assumes no responsibility whatsoever for its use by other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic. We would appreciate acknowledgement if the software is used.
This software can be redistributed and/or modified freely provided that any derivative works bear some notice that they are derived from it, and any modified versions bear some notice that they have been modified.
Enhancements:
- Corrected LINK_LIMIT #ifdefs (Fix from Peter Barron)
- aodv_neigh.c
- hello.c
- module.c
- Add Packet Queuing back in (Fix from Peter Barron)
- Send queued messages when recieving a route, aodv_route.c
- Drop packet from queue if RREQ fails, rreq.c
- Added packet_queue.c back in, packet_queue.c
- Added init and cleanup of packet_queue, module.c
- Added additional check to packet_out.c to determine if packet is going to external subnet on a gateway.
- Shouldnt be neccesary since a route should be created for the external destination anyhow. Have to look into this. (Fix from Peter Barron)
- Removed annoying message printed when signal strength can not be read. Instead only prints when can not be set. signal.c
- Fixed the undefined symbol STRCHR problem for real this time. The problem is doing strstr() with a singlecharecter results in it being converted to strchr(), but for some reason it is not properly imported. The solution it to simply use stchr() instead. module.c
- Changed it so that find_aodv_route() will return valid routes that have expired. When it didnt return expired routes two routes would sometimes be created. Also, now kernel routes are only removed when an expired route is removed. find_aodv_route() will also invalidate expired valid routes.
- Had some trouble with duplicate kernel routes. Now we are always deleting before inserting a new route. Should fix it, fingers are crossed.
- Changed delete_neighbor() so that we send out an RERR even if the route is no longer valid. Also change gen_rerr() so that is will send out a RERR even if the route is not valid. It has to be better to send out a few extra rather than not enough. Just cause you have timed a route out doesnt mean others have.
- Compared the Metrics wrong in update_route() if the seq numbers were equal.
<<lessKernel AODV is a loadable kernel module for Linux. It implements AODV routing between computers equipped with WLAN interfaces.
This software was developed at the National Institute of Standards and Technology by employees of the Federal Government in the course of their official duties. Pursuant to title 17 Section 105 of the United States Code this software is not subject to copyright protection and is in the public domain. Kernel AODV is an experimental system. NIST assumes no responsibility whatsoever for its use by other parties, and makes no guarantees, expressed or implied, about its quality, reliability, or any other characteristic. We would appreciate acknowledgement if the software is used.
This software can be redistributed and/or modified freely provided that any derivative works bear some notice that they are derived from it, and any modified versions bear some notice that they have been modified.
Enhancements:
- Corrected LINK_LIMIT #ifdefs (Fix from Peter Barron)
- aodv_neigh.c
- hello.c
- module.c
- Add Packet Queuing back in (Fix from Peter Barron)
- Send queued messages when recieving a route, aodv_route.c
- Drop packet from queue if RREQ fails, rreq.c
- Added packet_queue.c back in, packet_queue.c
- Added init and cleanup of packet_queue, module.c
- Added additional check to packet_out.c to determine if packet is going to external subnet on a gateway.
- Shouldnt be neccesary since a route should be created for the external destination anyhow. Have to look into this. (Fix from Peter Barron)
- Removed annoying message printed when signal strength can not be read. Instead only prints when can not be set. signal.c
- Fixed the undefined symbol STRCHR problem for real this time. The problem is doing strstr() with a singlecharecter results in it being converted to strchr(), but for some reason it is not properly imported. The solution it to simply use stchr() instead. module.c
- Changed it so that find_aodv_route() will return valid routes that have expired. When it didnt return expired routes two routes would sometimes be created. Also, now kernel routes are only removed when an expired route is removed. find_aodv_route() will also invalidate expired valid routes.
- Had some trouble with duplicate kernel routes. Now we are always deleting before inserting a new route. Should fix it, fingers are crossed.
- Changed delete_neighbor() so that we send out an RERR even if the route is no longer valid. Also change gen_rerr() so that is will send out a RERR even if the route is not valid. It has to be better to send out a few extra rather than not enough. Just cause you have timed a route out doesnt mean others have.
- Compared the Metrics wrong in update_route() if the seq numbers were equal.
Download (0.037MB)
Added: 2006-07-06 License: GPL (GNU General Public License) Price:
1213 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above postal 2 crack search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
