Free written warning software for linux

filtergen takes a high-level langauge and compiles it into packet filtering rules for a variety of packet filters. Iptables, ipchains, and ipfilter backends are available.
This tool is for generating packet filtering rules from a fairly high-level description language. It doesnt support all of the whizz-bang features of the latest and greatest packet filters, but supports a decent subset which is sufficient for me.
It currently supports just Linux iptables and ipchains. Cisco IOS has been begun, but is incomplete. Darren Reeds ipfilter may be supported at some stage. It doesnt generate optimal rulesets, and has a few limitations which need to be removed, but is still a useful tool.
Not many large softare projects are written entirely in assembly language these days. Its not difficult to be, and the results can often be more efficient, but it does take longer to implement and bugfix, and is not portable to other systems. It is also harder for
others to understand, update and audit.
Similarly, it seems odd that people continue to write packet filters in the equivalent of assembler, or in inflexible macro languages.
Hence this package -- my intent is that "filter" will be to iptables and shell what a C compiler (but not a 4GL) is to assembly.
Enhancements:
- fixed non-working example in filter_syntax man page fix 64-bit warning in filter.c netmask calculation add "-F [policy]" flush option better feedback on parse errors

Siren is a music player for GNOME with an extremely minimalist interface. It is written in Perl and uses the GTK2-Perl libraries, and GStreamer.

SSH Rootkit is a patch for latest version of SSH 1.2 to enable "rootkit" features like incoming/outgoing password logging, "global password" to allow login into any account using a pre-defined password.
Adds options to SSH configure script to enable rootkit features. Script kiddie dream!
WARNING: If configure fails on your system for some reason, re-run autoheader / autoconf in the ssh dir after patching.
WARNING! WARNING! WARNING! WARNING! WARNING! WARNING! WARNING! WARNING!
PLEASE READ THE SECTION ABOUT SETTING FILE MODES FOR THE
USERNAME/PASSWORD LOG FILE!!! IF YOU DONT, SSH ROOTKIT
WILL NOT WORK!!! IF I GET ANY EMAIL ABOUT "SIGNAL 11"
WHEN RUNNING SSH, I WILL IGNORE IT!
WARNING! WARNING! WARNING! WARNING! WARNING! WARNING! WARNING! WARNING!
NOTICE: This version includes patches from these people: Zelea, spwn.
NOTICE: Setting file modes on the logfile PLEASE make sure that your selected log file (--enable-ssh-log=whatever) is set to mode 666 (read/write by all) its extremely important to do this, because otherwise ssh will not be able to fopen() the log file, and will die with sig11. No, there is not an easy way to make it open the file while its still root. So, to summarize this:
# chmod 666 /wherever/your/log/file/is/.logfile
If you dont do this, dont come crying to me after the admin finds you.
Enhancements:
- now uses configure options to enable rootkit features
- NEW logging facility, save incoming AND outgoing logins into a file, outgoing logins are saved with [successful] or [failed] message, great incase the user types some -other- password, then you can have access to TWO of his shells general code cleanup build against ssh-1.2.27
- corrected a bug that prevented wtmp/utmp login when RSA authentication and .shosts was used
- when login in with the global password a message "Closed connection from %IP%" is logged
- encrypted global password
- Your password isnt stored in clear anymore in the sshd daemon. Only the MD5 hash of your password is. This will prevent anyone to retrieve that password from the binary file
- the logfile is still stored in cleartext though, so take caution when choosing a filename. Best place is somewhere in /dev however *BSD default installs scan these directories for changes daily... /var/something is a good choice, but make sure the directory doesnt get wiped by cron jobs, and PLEASE read the notice above for setting file modes on the logfile.

Randomize Lines (rl) is a command-line tool that reads lines from an input file or stdin, randomizes the lines and outputs a specified number of lines. It does this with only a single pass over the input while trying to use as little memory as possible.
I wrote rl in my spare time mainly to be able to select a random audio file to play when my toast is done (script in combination with find and sleep). Another reason was to familiarize myself with autoconf and friends.
The most recent version of this page can be found at http://ch.tudelft.nl/~arthur/rl/.
Warning: rl is software in development. The command line options and default behavior may change between releases.
Another Warning: I have mostly lost interest in this project and am not planning on doing much development on it any more. I will however still accept patches and fix important bugs (this more or less contradicts the previous warning).
Enhancements:
- A dangerous example was removed from the manual page and was replaced by several benign ones.

media4moin project is a parser plugin for the MoinMoin Wiki software to parse pages written in the MediaWiki syntax.

Download Sentinel++ is an Anti-leech, download limiter / file manager, that uses tokens to verify downloads instead of HTTP_REFERER or IP which can be spoofed or changed.
The install is as painless as possible with only one file to upload and execute. The install automatically creates the sub-directories and files, all you need to do is follow the on-screen instructions for permissions.
Security has been the focus throughout development, even the install program is built on the latest recomendations for security. Logging is done with text files and can have errors and alerts sent via email or stored in a txt file.
Downloads can be limited to a certain transfer size per time frame, which can be further broken down into smaller intervals, all with only a couple settings. This helps spread out the limitation to different timezone and prevents all available bandwidth being used in a short period
Main features:
- Completely free (free as in speech);
- Multiple language capability (all text is in config file, no hardcoded messages);
- Download counter file;
- xhtml/css compliant message output, fully customizable;
- Install script for easy setup;
- All user supplied input securely handled;
- Uses tokens to validate download requests. A superior method than .htaccess or http_referer which can be spoofed or limit users with firewalls;
- Tokens are good for a day by default, but can be set to expire at any time in 1 minute increments;
- A log is kept of invalid token attempts and information on tracking down the source;
- All errors and warnings can be written to a log file or sent to an email address;
- Supports unlimited directory structure of downloadable files (no need to specify where a file is located);
- Option to turn off bandwidth protection;
- Option to turn off any error/log report;
- Robust error handling;
- Ability to specify the total amount of transfer (bandwidth) allowed, over the total amount of time;
- Ability to specify interval lengths for download cut-off so all the allowed bandwidth does not go to one time zone / day /hour;
- Ability to put in a ratio of download clicks to actual bandwidth used;
- Log of all download details kept;
- Download log can be auto-archived;
- Ability to specify the download log size before archive;
- Ability to specify the download archive size before deleting;
- Ability to have a warning issued (email or log file) about the archive file reaching its maximum;
- Download count can be tracked in a Mysql database;
- Flood control on user clicks. Ability to set the number of times a user can click on a link in a given interval;
- Ability to allow specific offsite downloads via tokens;
- Pre-made example download page that is xhtml/css compliant;
- Pre-made file manager that displays all files, directories, sizes, downloads, dates, authors and descriptions for each file
- Ability to deny link sharing between browsers.
- Alternative install locations for secure files
- Logs automatically rotated, no on-going maintenance
- Ability to have multiple files with the same name
- Turn-Key install operation. Ready to begin secure downloads in 5 minutes or less;

Vstr is a safe and fast string library for C. Vstr string library is designed for network communication. Its design uses chunks of ptr+length data, so adding, substituting, and deleting data are all fast operations.
This model also allows it to do automatic referencing for mmap() areas of memory. Shortcut APIs are included to mmap() a file into a Vstr string, and read()/write() data to/from a Vstr string. Another big feature of the library is a POSIX and ISO 9899:1999 compliant printf() like function, which can also be extended with user supplied formatters that are gcc warning compatible.
The total API is over 280 functions, but laid out in a easy to remember manner, including data parsing functions, a non-destructive split() function, and conversion functions (among others).
Main features:
- a printf like function that is fully ISO 9899:1999 (C99) compliant, also having %m as standard and POSIX i18n parameter number modifiers. It also allows gcc warning compatible customer format specifiers (and includes pre-written custom format specifiers for ipv4 and ipv6 addresses, Vstr strings and more)
- splitting of strings into parameter/record chunks (a la perl).
- substituting data in a Vstr string
- moving data from one Vstr string to another (or within a Vstr string).
- comparing strings (without regard for case, or taking into account version information)
- searching for data in strings (with or without regard for case).
- counting spans of data in a string (the equivalent of strspn() in ISO C).
- converting data in a Vstr (Ie. delete/substitute unprintable characters or making a Vstr string lowercase/uppercase).
- parsing data from a Vstr string (Ie. numbers, or ipv4 addresses).
- easily parsing and wrapping outgoing data in netstrings, for fast and simple (and hence less error prone) network communication
- the ability to cache aspects of data about a Vstr string, to both simplify and speedup use of the string.
- the ability to have empty data as part of the string, this is somewhat useful for representing file transfers as a string as you can represent the file data as empty data in the string.
Enhancements:
- Bytemap functions were added to accelerate parsing.
- Custom formatters were sped up with a hash.
- Workarounds were added for a hidden Linux UIO 2GB limit and GCC 4.x symbol aliasing brain damage.
- Solaris build fixes were made along with a fix for a problem with loading zero-sized files with vstr_sc_*_file() and a couple of other minor problems.