RSS Feed

Thursday, September 26, 2002

Honeynet Rate Limiting White Paper

posted by GeeWhiz @ Thursday, September 26, 2002  

Wednesday, September 25, 2002

John sent in this link to the FreeBSD Toolkit from Linux Central.

posted by GeeWhiz @ Wednesday, September 25, 2002  

Tuesday, September 24, 2002

There are some good iptables resources at the LinuxGuruz site.

posted by GeeWhiz @ Tuesday, September 24, 2002  

Monday, September 23, 2002

Packet Filtering
John sent in the following links:
Linux Firewall Tools
RedHat Reference Guide For iptables
Linux 2.4 NAT HOWTO

posted by GeeWhiz @ Monday, September 23, 2002  

Here is the netfilter site.

posted by GeeWhiz @ Monday, September 23, 2002  

Tuesday, September 17, 2002

vsFTP: Very Secure FTP Server
Engarde Linux vsFTP Howto
vsFTP Packages

posted by GeeWhiz @ Tuesday, September 17, 2002  

djbdns
Daniel J. Bernstein is a professor of mathmatics and computer science at Univerity of Illinois at Chicago. Security is one of his sticking points. He makes a great dns server package called djbdns. Here is an article from one user of djbdns. Here is a domain for djbdns users.

posted by GeeWhiz @ Tuesday, September 17, 2002  

Monday, September 16, 2002

Freesco is a free linux-based replacement for Cisco routers.

posted by GeeWhiz @ Monday, September 16, 2002  


Wireless
Here is a good page for 802.11 on Linux information.

posted by GeeWhiz @ Monday, September 16, 2002  

Friday, September 13, 2002

Publicfile is a very secure web/ftp server. Defcon uses it for their web server which, as you might imagine, gets it's share of attacks and probes. Publicfile is a project of Daniel J. Bernstein, the author of qmail and djbdns. His web site is at cr.yp.to. DjB is a professor in the Department of Mathematics, Statistics, and Computer Science at the University of Illinois at Chicago. His information on cryptography is quite good.

posted by GeeWhiz @ Friday, September 13, 2002  

Apache Worm
A new variant of the Apache worm allows remote control of the system. This worm exploits a mod_ssl bug and can be identified by doing a ps -ax | grep bugtraq (it has the name .bugtraq). The worm acts as a remote 'agent' and can be instructed to execute a UDP flood, TCP Flood, DNS Flood and other goodies including command execution on infected system. The source code is found in /tmp/.bugtraq.c.

posted by GeeWhiz @ Friday, September 13, 2002  

Tuesday, September 10, 2002

Statscout is a FreeBSD based network analyzer on a single boot floppy. Turn any unused PC into an analyzer in minutes.

posted by GeeWhiz @ Tuesday, September 10, 2002  

Monday, September 09, 2002

Red Hat 7.3 Guide to NFS

posted by GeeWhiz @ Monday, September 09, 2002  

A decent web page on NFS.

posted by GeeWhiz @ Monday, September 09, 2002  

Sunday, September 08, 2002

socklist shows a list of ports with bound processes:

[root@silinux root]# socklist
type port inode uid pid fd name
tcp 22 1201 0 781 3 sshd
tcp 22 15011 0 13920 4 sshd

posted by GeeWhiz @ Sunday, September 08, 2002  

Bastille Linux is a set of scripts for securing Linux.

posted by GeeWhiz @ Sunday, September 08, 2002  

Friday, September 06, 2002

Kerberos

Kerberos is one of the available methods for centralization of authentication. The primary goal of kerberos is end-to-end password encryption in order to avoid sending plain-text passwords over the wire.

The Red Hat 7.3 manual for Kerberos.

The Kerberos web site at MIT.

The Kerberos information page at Carnegie-Mellon University.

posted by GeeWhiz @ Friday, September 06, 2002  

Tuesday, September 03, 2002

Here is a paper on the ext3 filesystem.

posted by GeeWhiz @ Tuesday, September 03, 2002