protection against viruses
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 959
Aegis Virus Scanner 2.0.0
Aegis is a virus scanner for Linux, Unix and Windows with a simple and intuitive user interface. more>>
Aegis project is a virus scanner for Linux, Unix and Windows with a simple and intuitive user interface.
Aegis supports scanning of subdirectories, hidden files and .zip and .tar archive files, and drag-and-drop of files from the Nautilus file browser, or your Gnome desktop. When a virus is detected you can choose to delete, quarantine or rename the file.
<<lessAegis supports scanning of subdirectories, hidden files and .zip and .tar archive files, and drag-and-drop of files from the Nautilus file browser, or your Gnome desktop. When a virus is detected you can choose to delete, quarantine or rename the file.
Download (0.021MB)
Added: 2006-09-20 License: GPL (GNU General Public License) Price:
1134 downloads
protector 1.00.11
protector scans e-mail attachments in order to identify those that could (by nature of their type) contain viruses. more>>
protector scans e-mail attachments in order to identify those that could (by nature of their type) contain viruses or other undesirable content, and replaces them with a warning message. Protector is designed to be used on a unix mail gateway server MS Windows clients by way of a POP3 service. Typically, protector blocks DOS or Windows executables, DLLS etc Files with double extensions like "picture.gif.exe" Visual basic (VB) scripts Word documents that contain macros unrecognised file types ... etc ...
Protector is NOT a virus scanner in the traditional sense: It does NOT scan attachments for virus signatures, but blocks or edits attachments that could contain viruses. So *.exe, *.vba etc attachments dont get through. This means that you dont have to keep protector up to date to stay protected against the growing tide of new viruses and worms.
Protector does not work by blocking listed types, but by blocking a set of listed types.
The logic employed by protector to determine the file types contained in attachments is based on a modified version of the "file" command, and a number of type-specific validation programs - it does not rely on the actual name of the file, or the "content-type" declared in the attachment header. It also looks inside ZIP, TAR and other archive formats, and checks the files contained in them.
Some types of files are allowed through only under certain conditions. The main example being that MS Word documents are blocked if they contain ANY macros, but allowed through otherwise.
Protector grew out of a need to protect a small network that I manage in my spare time from the dangers of e-mail borne viruses and trojans. A number of installations exist round the world and feed back from users has allowed me to improve the system - in terms of reliability, performance, ease of use and the breadth of file types "allowed through". Development is still underway, and a new release will be available shortly that allows a far larger set of file types through, allows scripts to be removed from attachments (eg: JavaScript can be removed from HTML files), and is significantly easier to tailor.
Constructive critisism is warmly invited
<<lessProtector is NOT a virus scanner in the traditional sense: It does NOT scan attachments for virus signatures, but blocks or edits attachments that could contain viruses. So *.exe, *.vba etc attachments dont get through. This means that you dont have to keep protector up to date to stay protected against the growing tide of new viruses and worms.
Protector does not work by blocking listed types, but by blocking a set of listed types.
The logic employed by protector to determine the file types contained in attachments is based on a modified version of the "file" command, and a number of type-specific validation programs - it does not rely on the actual name of the file, or the "content-type" declared in the attachment header. It also looks inside ZIP, TAR and other archive formats, and checks the files contained in them.
Some types of files are allowed through only under certain conditions. The main example being that MS Word documents are blocked if they contain ANY macros, but allowed through otherwise.
Protector grew out of a need to protect a small network that I manage in my spare time from the dangers of e-mail borne viruses and trojans. A number of installations exist round the world and feed back from users has allowed me to improve the system - in terms of reliability, performance, ease of use and the breadth of file types "allowed through". Development is still underway, and a new release will be available shortly that allows a far larger set of file types through, allows scripts to be removed from attachments (eg: JavaScript can be removed from HTML files), and is significantly easier to tailor.
Constructive critisism is warmly invited
Download (0.22MB)
Added: 2006-07-07 License: GPL (GNU General Public License) Price:
1205 downloads
F-Prot Antivirus for Linux Workstations 4.6.7
F-Prot Antivirus for Linux Workstations in an FREE antivirus solution for Linux Workstations. more>>
F-Prot Antivirus security software package has various components that help keep your system secure from viruses, backdoors, trojans and other malicious programs. The project includes the RealTime Protector, a memory-resident monitoring utility that observes all files accessed on your system, a Scheduler where you can set the Scanner to make automatic scans or updates on your system at any time and an Updater to manage all signature updates.
For home users using the Linux open-source operating system, we offer F-Prot Antivirus for Linux Workstations. F-Prot Antivirus for Linux Workstations utilizes the renowned F-Prot Antivirus scanning engine for primary scan but has in addition to that a system of internal heuristics devised to search for unknown viruses
F-Prot Antivirus for Linux was especially developed to effectively eradicate viruses threatening workstations running Linux. It provides full protection against macro viruses and other forms of malicious software - including Trojans.
Main features:
- Scans for over 191534 known viruses and their variants
- Ability to perform scheduled scans when used with the cron utility
- Scans hard drives, CD-ROMS, diskettes, network drives, directories and specific files
- Scans for images of boot sector viruses, macro viruses and Trojan Horses
F-Prot Antivirus for Linux Workstations is FREE for use by personal users on personal workstations
<<lessFor home users using the Linux open-source operating system, we offer F-Prot Antivirus for Linux Workstations. F-Prot Antivirus for Linux Workstations utilizes the renowned F-Prot Antivirus scanning engine for primary scan but has in addition to that a system of internal heuristics devised to search for unknown viruses
F-Prot Antivirus for Linux was especially developed to effectively eradicate viruses threatening workstations running Linux. It provides full protection against macro viruses and other forms of malicious software - including Trojans.
Main features:
- Scans for over 191534 known viruses and their variants
- Ability to perform scheduled scans when used with the cron utility
- Scans hard drives, CD-ROMS, diskettes, network drives, directories and specific files
- Scans for images of boot sector viruses, macro viruses and Trojan Horses
F-Prot Antivirus for Linux Workstations is FREE for use by personal users on personal workstations
Download (2.8MB)
Added: 2006-12-04 License: Freeware Price:
1090 downloads
Corbicula Anti Virus 0.0.20060505-1
Corbicula Anti Virus provides a GNOME HIG compliant front end for ClamAV more>>
Corbicula Anti Virus is a GNOME HIG compliant front end for ClamAV.
Corbicula Anti Virus tries to be the simplest possible anti virus application, without any fancy features who nobody uses anyway...
<<lessCorbicula Anti Virus tries to be the simplest possible anti virus application, without any fancy features who nobody uses anyway...
Download (0.030MB)
Added: 2006-05-06 License: GPL (GNU General Public License) Price:
1269 downloads
OpenProtect 5.0.4
OpenProtect is a server-side email protector which guards against spam and viruses. more>>
Openprotect is our set of e-mail filters bundle consisting of Kaspersky Antivirus, Clam Antivirus, SpamAssassinand MailScanner along with our Qmail module.
Enhancements:
- MailScanner was updated to version 4.46.2 with an improved phishing net for JavaScript.
- A highlight Phishing fraud option was added along with the ability to quarantine all mail that has been modified and a Scan Messages option to completely disable processing of a particular mail address.
- ClamAV was updated to 0.87 and SpamAssassin(SA) was updated to 3.1.0 with many plugins and MCP patches for better spam/MCP filtering.
- A openprotect-test utility that sends test virus, spam, and clean mail to verify the setup was added along with openprotect-renew, which installs a KAV license and views expiry status.
- razor 2.77 with various bugfixes was included.
<<lessEnhancements:
- MailScanner was updated to version 4.46.2 with an improved phishing net for JavaScript.
- A highlight Phishing fraud option was added along with the ability to quarantine all mail that has been modified and a Scan Messages option to completely disable processing of a particular mail address.
- ClamAV was updated to 0.87 and SpamAssassin(SA) was updated to 3.1.0 with many plugins and MCP patches for better spam/MCP filtering.
- A openprotect-test utility that sends test virus, spam, and clean mail to verify the setup was added along with openprotect-renew, which installs a KAV license and views expiry status.
- razor 2.77 with various bugfixes was included.
Download (9.0MB)
Added: 2005-10-20 License: GPL (GNU General Public License) Price:
1472 downloads
AVG Anti-Virus Definitions 270.12.94
AVG Anti-Virus Definitions are virus definitions for AVG Anti-Virus software. more>> AVG Anti-Virus Definitions 270.12.94 are an informative and useful software which contains virus definitions for AVG Anti-Virus
About AVG Anti-Virus:
- AVG Professional Single Edition is perfectly designed to give you the maximum antivirus protection for your single home PC or workstation.
- It is simple to install and operate. No IT expertise is required and it can run in the background, providing uninterrupted protection. All file and e-mail activity is checked automatically, allowing you to get on with your work without worrying about viruses.
- It is extremely fast, reliable and light on resources, so, no matter how demanding a user you are, it will not slow down your performance.
Enhancements: Added detection of new variants of trojans SHeur2.ANNO, BackDoor.Hupigon5.LCW, SHeur2.ANOR, Downloader.Generic8.AXOI, PSW.Banker5.ONF, Generic13.BPUS.
Added: 2009-06-29 License: Freeware Price: FREE
21 downloads
Other version of AVG Anti-Virus Definitions
the background, providing uninterrupted protection. All file and e-mail activity is checked ... work without worrying about viruses. It is extremely fast, reliable and light on resources, soPrice: FREE
License:Freeware
License:Freeware
AVG Anti-Virus Definitions are virus definitions for AVG Anti-Virus software. About AVG Anti ... the background, providing uninterrupted protection. All file and e-mail activity is checkedLicense:Freeware
F-Prot GUI 0.5
F-Prot GUI is a graphical user interface for great (and free for individual users) command line antivirus called F-Prot. more>>
F-Prot GUI is a graphical user interface for great (and free for individual users) command line antivirus called F-Prot.
F-Prot GUI is a very simple script but not featureless, I hope it will be useful.
For home users using the Linux open-source operating system, we offer F-Prot Antivirus for Linux Workstations. F-Prot Antivirus for Linux Workstations utilizes the renowned F-Prot Antivirus scanning engine for primary scan but has in addition to that a system of internal heuristics devised to search for unknown viruses
F-Prot Antivirus for Linux was especially developed to effectively eradicate viruses threatening workstations running Linux. It provides full protection against macro viruses and other forms of malicious software - including Trojans.
Main features:
- Scans for over 314168 known viruses and their variants
- Ability to perform scheduled scans when used with the cron utility
- Scans hard drives, CD-ROMS, diskettes, network drives, directories and specific files
- Scans for images of boot sector viruses, macro viruses and Trojan Horses
<<lessF-Prot GUI is a very simple script but not featureless, I hope it will be useful.
For home users using the Linux open-source operating system, we offer F-Prot Antivirus for Linux Workstations. F-Prot Antivirus for Linux Workstations utilizes the renowned F-Prot Antivirus scanning engine for primary scan but has in addition to that a system of internal heuristics devised to search for unknown viruses
F-Prot Antivirus for Linux was especially developed to effectively eradicate viruses threatening workstations running Linux. It provides full protection against macro viruses and other forms of malicious software - including Trojans.
Main features:
- Scans for over 314168 known viruses and their variants
- Ability to perform scheduled scans when used with the cron utility
- Scans hard drives, CD-ROMS, diskettes, network drives, directories and specific files
- Scans for images of boot sector viruses, macro viruses and Trojan Horses
Download (0.009MB)
Added: 2006-08-14 License: GPL (GNU General Public License) Price:
1174 downloads
Horde Application Framework 3.0.12
Horde Application Framework is a general-purpose web application framework in PHP. more>>
The Horde Application Framework is written in PHP, and provides the common tools a Web application requires: classes for dealing with preferences, compression, browser detection, connection tracking, MIME, and more.
The Horde Framework does not provide any significant end user functionality and it provides a base for other applications and tools for developers. You will probably want to install some of the available Horde applications, such as IMP (a webmail client), or Kronolith (a calendar).
Enhancements:
- This is a security release that fixes a cross site scripting vulnerability and improves protection against phishing attempts.
<<lessThe Horde Framework does not provide any significant end user functionality and it provides a base for other applications and tools for developers. You will probably want to install some of the available Horde applications, such as IMP (a webmail client), or Kronolith (a calendar).
Enhancements:
- This is a security release that fixes a cross site scripting vulnerability and improves protection against phishing attempts.
Download (3.6MB)
Added: 2006-08-17 License: LGPL (GNU Lesser General Public License) Price:
1164 downloads
POP3 Virus Scanner Proxy 0.4
POP3 Virus Scanner Proxy is a full-transparent proxy daemon which scans all mails for viruses more>>
POP3 Virus Scanner Proxy is a full-transparent proxy daemon which scans all mails for viruses using third party scanners (built-in support for AVPD and Trophie).
You have to set up a port redirection in the linux-netfilter (iptables) so that all connections from e.g. inside your office to any POP3 server outside in the world will not leave your router, but come a local port, on which POP3VScan listens. POP3VScan receives from the linux kernel the original destinations of packets (the POP3 server outside in the world) and will connect to them.
All data we receive from the client will be sent to the server, and vice versa. With a little enhancement: we parse the neccessary parts of the POP3 protocol and when an email is sent from the server, we store it into a file, invoke a virusscanner and send it if it is good, or we just replace it with a virus notification. It should be possible to use all scanners using the scannertype=basic. Also POP3VScan provides scannertype=avpd for high-speed scanning using Kaspersky Anti-Virus for Linux, every C programmer can easily adept other scan-daemons (trophie, sophie, antivir, ...).
Neither the client nor the server has to be configured, none of them will take notice that theres a mailscanner (except the client when he gets a virus notification or if he looks into the header, and the server gets our ip as source).
<<lessYou have to set up a port redirection in the linux-netfilter (iptables) so that all connections from e.g. inside your office to any POP3 server outside in the world will not leave your router, but come a local port, on which POP3VScan listens. POP3VScan receives from the linux kernel the original destinations of packets (the POP3 server outside in the world) and will connect to them.
All data we receive from the client will be sent to the server, and vice versa. With a little enhancement: we parse the neccessary parts of the POP3 protocol and when an email is sent from the server, we store it into a file, invoke a virusscanner and send it if it is good, or we just replace it with a virus notification. It should be possible to use all scanners using the scannertype=basic. Also POP3VScan provides scannertype=avpd for high-speed scanning using Kaspersky Anti-Virus for Linux, every C programmer can easily adept other scan-daemons (trophie, sophie, antivir, ...).
Neither the client nor the server has to be configured, none of them will take notice that theres a mailscanner (except the client when he gets a virus notification or if he looks into the header, and the server gets our ip as source).
Download (0.13MB)
Added: 2006-07-07 License: GPL (GNU General Public License) Price:
1208 downloads
Viralator Proxy Virus Scanner 0.9.7
Viralator Proxy Virus Scanner is a Perl script that virus scans HTTP/FTP downloads request on a UNIX server. more>>
Viralator is a Perl script that virus scans HTTP/FTP downloads request on a UNIX server after passing through the Squid proxy server.
Even when I implemented virus protection for my network email server we still continued to get the odd virus. Most of the viruses came from people using free webmail accounts like Hotmail or Yahoo and downloading the infected attachments to their machines or through downloading junk.
Rather than block access to the users I decided to look at how we could better protect the network. I looked at a couple of different products both comercial and free but they were either too expensive or did not meet my needs.
That is how Viralator was born. Viralator Proxy Virus Scanner is licenced under the GPL.
Viralator should work in any UNIX system that uses Apache and Squid servers. We have reports about successful instalations on:
- RedHat Linux
- Mandrake Linux
- SuSe Linux
- e-Smith Linux
- Slackware Linux
- Conectiva Linux
- Debian Gnu Linux
Supported Redirectors:
- Squirm
- SquidGuard
- Jesred
Supported Virus Scanners
- AntiVir
- AVP
- RAV
- Inoculate
- Sophos Sweep
- McAfee
- Trend
- Clamav
- Bit Defender (free edition)
The original concept for Viralator came from the Viromat project. Without Viromat the Viralator project would not have had a starting point. We can also thank Ralph Meyer for badgering me into releasing the script under the GPL.
Enhancements:
- Parenthesis are included on the regular expression used to validate URLs.
- The character set checking step, which was not working before last patch released, has been fixed.
<<lessEven when I implemented virus protection for my network email server we still continued to get the odd virus. Most of the viruses came from people using free webmail accounts like Hotmail or Yahoo and downloading the infected attachments to their machines or through downloading junk.
Rather than block access to the users I decided to look at how we could better protect the network. I looked at a couple of different products both comercial and free but they were either too expensive or did not meet my needs.
That is how Viralator was born. Viralator Proxy Virus Scanner is licenced under the GPL.
Viralator should work in any UNIX system that uses Apache and Squid servers. We have reports about successful instalations on:
- RedHat Linux
- Mandrake Linux
- SuSe Linux
- e-Smith Linux
- Slackware Linux
- Conectiva Linux
- Debian Gnu Linux
Supported Redirectors:
- Squirm
- SquidGuard
- Jesred
Supported Virus Scanners
- AntiVir
- AVP
- RAV
- Inoculate
- Sophos Sweep
- McAfee
- Trend
- Clamav
- Bit Defender (free edition)
The original concept for Viralator came from the Viromat project. Without Viromat the Viralator project would not have had a starting point. We can also thank Ralph Meyer for badgering me into releasing the script under the GPL.
Enhancements:
- Parenthesis are included on the regular expression used to validate URLs.
- The character set checking step, which was not working before last patch released, has been fixed.
Download (0.029MB)
Added: 2006-06-16 License: GPL (GNU General Public License) Price:
1240 downloads
Milter-Virus 2.0.0
Milter-Virus is a wrapper that can be used with many commercial and freely available virus scanners. more>>
Milter-virus is not a virus scanner. It is a wrapper that can be used with many commercial and freely available virus scanners. Milter-Virust is written completely in C, and requires (few skills??).
It is run-able with the Milter interface, but then will only scan for "double extensions".
If you wish it to scan for more, you need at Ripmime or other tools to extract files from MIME-encoded emails. You also need a (command-line) virus scanner.
The difference between this program and the original is that this is much more configurable via the config file. The original version has the advantage that it is simpler and easier to bugfix.
Enhancements:
- This is a large update.
- Many problems in the statistik module were fixed.
- Some spam protection features were included.
<<lessIt is run-able with the Milter interface, but then will only scan for "double extensions".
If you wish it to scan for more, you need at Ripmime or other tools to extract files from MIME-encoded emails. You also need a (command-line) virus scanner.
The difference between this program and the original is that this is much more configurable via the config file. The original version has the advantage that it is simpler and easier to bugfix.
Enhancements:
- This is a large update.
- Many problems in the statistik module were fixed.
- Some spam protection features were included.
Download (0.11MB)
Added: 2007-01-04 License: GPL (GNU General Public License) Price:
1032 downloads
CGI::Application::Plugin::RateLimit 1.0
CGI::Application::Plugin::RateLimit is a plugin for CGI::Application. more>>
CGI::Application::Plugin::RateLimit is a plugin for CGI::Application which provides protection against a user calling a runmode too frequently. A typical use-case might be a contact form that sends email.
Youd like to allow your users to send you messages, but thousands of messages from a single user in a short period of time would be a problem.
Installation:
To install this module type the following:
perl Makefile.PL
make
make test
make install
<<lessYoud like to allow your users to send you messages, but thousands of messages from a single user in a short period of time would be a problem.
Installation:
To install this module type the following:
perl Makefile.PL
make
make test
make install
Download (0.007MB)
Added: 2006-05-05 License: GPL (GNU General Public License) Price:
1267 downloads
Blood Toll Beta
Blood Toll is the first ever online video game where everyone has a price on their head. more>>
Have you ever been told "stop wasting your time playing video games?" Well now it is time to turn those hours of wasted time into skills that can earn you money.
Blood Toll project is the first ever online video game where everyone has a price on their head, and the more you frag the more money you make. Play for free and win cool prizes with our training mode until you are comfortable enough to play the real thing.
Main features:
- Completely free to download and play
- One click installation
- Fast paced game play
- Compete against real people for real money
- Compete for cool prizes
- Extremely fast to download
- Constantly updating with new levels, items and weapons
- Software checks to insure all players have a sufficient internet connection to prevent lag
- Built with exceptional cheat protection and security
<<lessBlood Toll project is the first ever online video game where everyone has a price on their head, and the more you frag the more money you make. Play for free and win cool prizes with our training mode until you are comfortable enough to play the real thing.
Main features:
- Completely free to download and play
- One click installation
- Fast paced game play
- Compete against real people for real money
- Compete for cool prizes
- Extremely fast to download
- Constantly updating with new levels, items and weapons
- Software checks to insure all players have a sufficient internet connection to prevent lag
- Built with exceptional cheat protection and security
Download (MB)
Added: 2007-01-22 License: Freeware Price:
1008 downloads
renattach 1.2.4
renattach is a mail filter that renames/deletes dangerous email attachments. more>>
renattach is a mail filter that renames/deletes dangerous email attachments.
renattach is a fast and efficient UNIX stream filter that can rename or delete potentially dangerous e-mail attachments. The filter is invoked as a simple pipe for use in a wide variety of systems. The kill feature (which eliminates entire messages) can also help sites deal with resource strains caused by modern virus floods.
renattach is written in pure C and can quickly process mail with little overhead. Unlike a conventional virus scanner, there are no specific virus or worm definitions. Instead, renattach identifies potentially dangerous attachments based on file extension and executable encoded body content.
The software is even capable of reading filenames from inside ZIP archives on the fly, without requiring any external software. The self-contained MIME code parses, fully interprets, then rewrites the header of every attached file.
During this process it checks the files extension against a list, and further checks to make sure the filename is not on a banned list. Only after passing through these steps is the MIME header written fresh using a predetermined, known format.
The programs operation is simple: a single mail message is read from stdin, filtered, then written to stdout (or piped to an external command).
Tested under Linux, FreeBSD, NetBSD, Solaris, Mac OS X, OS/2, and Cygwin. This software should compile on any UNIX-like system that has standard C libraries.
Enhancements:
- The --loop option was added, which removes Delivered-To headers from the input message.
- This defends Postfix against a "mail forwarding loop" spam relay trick which could be used when renattach is installed as an smtpd-side content filter.
<<lessrenattach is a fast and efficient UNIX stream filter that can rename or delete potentially dangerous e-mail attachments. The filter is invoked as a simple pipe for use in a wide variety of systems. The kill feature (which eliminates entire messages) can also help sites deal with resource strains caused by modern virus floods.
renattach is written in pure C and can quickly process mail with little overhead. Unlike a conventional virus scanner, there are no specific virus or worm definitions. Instead, renattach identifies potentially dangerous attachments based on file extension and executable encoded body content.
The software is even capable of reading filenames from inside ZIP archives on the fly, without requiring any external software. The self-contained MIME code parses, fully interprets, then rewrites the header of every attached file.
During this process it checks the files extension against a list, and further checks to make sure the filename is not on a banned list. Only after passing through these steps is the MIME header written fresh using a predetermined, known format.
The programs operation is simple: a single mail message is read from stdin, filtered, then written to stdout (or piped to an external command).
Tested under Linux, FreeBSD, NetBSD, Solaris, Mac OS X, OS/2, and Cygwin. This software should compile on any UNIX-like system that has standard C libraries.
Enhancements:
- The --loop option was added, which removes Delivered-To headers from the input message.
- This defends Postfix against a "mail forwarding loop" spam relay trick which could be used when renattach is installed as an smtpd-side content filter.
Download (0.11MB)
Added: 2006-10-25 License: GPL (GNU General Public License) Price:
1094 downloads
tcp wrappers 7.6
The tcp_wrappers package allows you to monitor and filter incoming tcp requests. more>>
The tcp_wrappers package allows you to monitor and filter incoming requests for the SYSTAT, FINGER, FTP, TELNET, RLOGIN, RSH, EXEC, TFTP, TALK, and other network services. It provides tiny daemon wrapper programs that can be installed without any changes to existing software or to existing configuration files. The wrappers report the name of the client host and of the requested service. The wrappers do not exchange information with the client or server applications, so it does not impose no overhead on the actual conversation between the client and server applications.
It supports both 4.3BSD-style sockets and System V.4-style TLI. Praise yourself lucky if you dont know what that means.
The package provides tiny daemon wrapper programs that can be installed without any changes to existing software or to existing configuration files. The wrappers report the name of the client host and of the requested service; the wrappers do not exchange information with the client or server applications, and impose no overhead on the actual
conversation between the client and server applications.
Optional features are: access control to restrict what systems can connect to what network daemons; client user name lookups with the RFC 931 etc. protocol; additional protection against hosts that pretend to have someone elses host name; additional protection against hosts that pretend to have someone elses host address.
The programs are very portable. Build procedures are provided for many common (and not so common) environments, and guidelines are provided in case your environment is not among them.
Requirements are that network daemons are spawned by a super server such as the inetd; a 4.3BSD-style socket programming interface and/or System V.4-style TLI programming interface; and the availability of a syslog(3) library and of a syslogd(8) daemon. The wrappers should run without modification on any system that satisfies these requirements. Workarounds have been implemented for several common bugs in systems software.
What to do if this is your first encounter with the wrapper programs: 1) read the tutorial sections for an introduction to the relevant concepts and terminology; 2) glance over the security feature sections in this document; 3) follow the installation instructions (easy or
advanced). I recommend that you first use the default security feature settings. Run the wrappers for a few days to become familiar with their logs, before doing anything drastic such as cutting off access or installing booby traps.
Enhancements:
- Improved the anti source-routing protection. The code in version 7.5 was not as strong as it could be, because I tried to be compatible with Linux. That was a mistake. Sorry for the inconvenience.
-
- The program no longer terminates case of a source-routed connection, making the IP-spoofing code more usable for long-running daemons.
-
- When syslogging DNS hostname problems, always stop after a limited number of characters.
<<lessIt supports both 4.3BSD-style sockets and System V.4-style TLI. Praise yourself lucky if you dont know what that means.
The package provides tiny daemon wrapper programs that can be installed without any changes to existing software or to existing configuration files. The wrappers report the name of the client host and of the requested service; the wrappers do not exchange information with the client or server applications, and impose no overhead on the actual
conversation between the client and server applications.
Optional features are: access control to restrict what systems can connect to what network daemons; client user name lookups with the RFC 931 etc. protocol; additional protection against hosts that pretend to have someone elses host name; additional protection against hosts that pretend to have someone elses host address.
The programs are very portable. Build procedures are provided for many common (and not so common) environments, and guidelines are provided in case your environment is not among them.
Requirements are that network daemons are spawned by a super server such as the inetd; a 4.3BSD-style socket programming interface and/or System V.4-style TLI programming interface; and the availability of a syslog(3) library and of a syslogd(8) daemon. The wrappers should run without modification on any system that satisfies these requirements. Workarounds have been implemented for several common bugs in systems software.
What to do if this is your first encounter with the wrapper programs: 1) read the tutorial sections for an introduction to the relevant concepts and terminology; 2) glance over the security feature sections in this document; 3) follow the installation instructions (easy or
advanced). I recommend that you first use the default security feature settings. Run the wrappers for a few days to become familiar with their logs, before doing anything drastic such as cutting off access or installing booby traps.
Enhancements:
- Improved the anti source-routing protection. The code in version 7.5 was not as strong as it could be, because I tried to be compatible with Linux. That was a mistake. Sorry for the inconvenience.
-
- The program no longer terminates case of a source-routed connection, making the IP-spoofing code more usable for long-running daemons.
-
- When syslogging DNS hostname problems, always stop after a limited number of characters.
Download (0.097MB)
Added: 2006-06-29 License: GPL (GNU General Public License) Price:
704 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above protection against viruses search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
