. . . . .
back to files | text only click here
. . . . .
. . . . .
back to files | text only click here
. . . . .
This is a collection of security-related files. Most of these files are not located on this server - those links are pointing to their master file locations.
File Size
---------------------- --------------------------------------------------
cops_104.tar.Z 399K
The UNIX security checker by Dan Farmer. Run this on your
systems before someone else does.
satan-1.1.1.tar.Z 369K
satan_doc.tar.Z 537K
Network analysis program by Wietse Venema and Dan Farmer.
tiger-2.2.3.tar.gz 259K
'tiger' is a set of scripts that scan a Un*x system looking for
security problems, in the same fashion as Dan Farmer's COPS.
'tiger' was originally developed to provide a check of UNIX
systems on the A&M campus that want to be accessed from off
campus (clearance through the packet filter).
. . . . .
File Size
---------------------- --------------------------------------------------
logdaemon-5.6.tar.gz 221K
- Rlogin and rsh daemons that log the remote user name as well
as the remote host name, with tcp_wrapper access control.
These daemons are believed to be drop-in replacements for SunOS
4.x, Ultrix 4.x and SunOS 5.x (Solaris 2.x).
- Login replacement that supports S/Key one-time passwords,
per-user/host/terminal access control, and with a fascist login
failure logging (tested with SunOS 4.x and 5.x).
- Ftpd that supports S/Key one-time passwords, fascist login
failure logging, and logging of anonymous FTP xfers (tested
with SunOS 4.x and 5.x).
- Rexecd daemon that blocks access to the root account (tested
with SunOS 4.x and 5.x) with fascist login failure logging and
tcp_wrapper access control.
portmap_5beta.tar.gz 18K
Replacement portmapper with access control. Makes it somewhat
harder to attack your RPC daemons, for example to steal YP
password maps or NFS file handles. Must be linked against an
object library produced with a recent tcp wrapper (log_tcp)
release (see above). Tested with Ultrix [34], SunOS 4.1.x, HP-UX
8.0, AIX 3.1.5 (bsdcc compiler with -D_SUN).
If you run SunOS 4, the securelib library (see above) is better
because it can also cope with direct attacks on your RPC
daemons (i.e. attacks without assistance from portmap).
SunOS4 users should replace their NIS/portmap daemons with fixed
ones from Sun that implement access control (patch 100482-xx).
securelib.tar.Z 16K
Protect your RPC daemons against unauthorized access.
Shared library for SunOS 4.1 and later with replacement
routines for three kernel calls: accept, recvfrom, recvmsg.
These replacements are compatible with the originals, with the
additional functionality that they check the Internet address
of the machine initiating the connection to make sure that it
is "allowed" to connect. Written by William LeFebvre.
swatch-2.2.tar.gz 43K
Excellent utility for monitoring log files, swatch will sit
and watch a log file, scan for specific entries in the log file,
and take the action you have determined. When used in conjunction
with tcp_wrappers monitoring syslog, a sophisticated monitoring
system can be implemented.
tcp_wrappers_7.5.tar.Z 96K
Wietse Venema's network logger, also known as TCPD or LOG_TCP.
These programs log the remote host name of incoming telnet,
ftp, ,rsh, rlogin, finger etc. requests. Security options
are: access control per host, domain and/or service; detection
of host name spoofing or host address spoofing; booby traps to
implement an early-warning system. The current version
supports the System V.4 TLI network programming interface
(Solaris, DG/UX) in addition to the traditional BSD sockets.
tripwire-1.2.tar.Z 451K
Tripwire creates a signature of binary files, and then checks
to see if these files have been modified. Helps track
modifications and alterations to binary files.
. . . . .
File Size ---------------------- -------------------------------------------------- crack5.0.tar.gz 2895K Password cracker by Alec Muffett. Run this one on your password files before someone else does. Can be run in parallel on a bunch of workstations. A fine colection of word lists can be found on black.ox.ac.uk in /wordlists cracklib.tar.Z 36K Proactive password security library by Alec Muffett. The idea is simple: try to prevent users from choosing passwords that could be guessed by "Crack" by filtering them out, at source. . . . . .
File Size
---------------------- --------------------------------------------------
chrootuid1.2.shar.Z 7K
Chrootuid makes it easy to run a network service at low
privilege level and with restricted file system access. At
Eindhoven University they use this program to run the gopher and
www (world-wide web) network daemons in a minimal environment:
the daemons have access only to their own directory tree, and
run under a low-privileged userid. The arrangement greatly
reduces the impact of possible loopholes in daemon software.
netlog-1.2.tar.gz 65K
An advanced network sniffer system to monitor your networks.
These programs are a part of the network security system used
by Texas A&M University. It can be used for locating
suspicious network traffic. The following programs are
included:
tcplogger - Log all TCP connections on a subnet
udplogger - Log all UDP sessions on a subnet
extract - Process log files created by tcplogger or udplogger
All three programs require an ANSI C compiler. Tcplogger and
udplogger use the SunOS 4.x Network Interface Tap (nit).
tcpr-1.3.tar.gz 19K
Tcpr is a set of perl scripts that enable you to run ftp and
telnet commands across a firewall. Forwarding takes place at
the application level, so it's easy to control.
3wfaq2.tgz 35K
3wfaq2.zip 40K
wfaqhtm2.tgz 48K
wfaqhtm2.zip 54K
The Unofficial Web Hack FAQ, which is also available online. The
files are as follows:
3wfaq2.tgz - Text files for Unix
3wfaq2.zip - Text files for DOS
wfaqhtm2.tgz - HTML files
wfaqhtm2.zip - HTML files in 8.3 format for DOS
. . . . .