This page is dedicated to computer security issues - primarily UNIX, but
not excluding other platforms.
The security-tools-list stuff is here.
Here are the best of the best tools to aid in increased system security.
- logmon, my perl script to search system log
files for specific patterns.
Information | Download
- Information on the
overhyped, but useful, SATAN.
- TCP Wrappers is a vital program in any secure system. It allows a
Unix System Administrator to control access to various network services.
In addition to providing logging information of wrapped network
services, which may be used to prevent or monitor for network attacks, it
gives the administrator complete control over the actions taken when
a connection is allowed or denied.
Download
- Ident allows a remote host to identify the local user on a TCP/IP
connection. Very useful for knowing not only the host name, but the user
name, in a possible network attack. Implements the RFC 1413 protocol.
Download.
- The TIS Firewall Toolkit can be used to create an application-level
proxy firewall.
Download
| Information
- Crack allows you to check your users' passwords for guessability. The
best UNIX password file cracker around.
Download
- SSH (Secure Shell) is an enhance versions of rlogin, rsh and rcp that
provides RSA authentication and encryption
of communications as well as many other security improvements.
Download | Information
- Sudo allows a system administrator to give limited root priviledges
for specific commands to specific users.
Download | Information
- COPS is an automated security risk-identification program, along the
same lines as SATAN, and by the same authors. Somewhat dated, but
nevertheless invaluable.
Download
For more tools,
visit these FTP sites.
- COAST has a
comprehensive collection of tools.
Under construction.
Here are some links to other computer security resources. Most of them
pages holding links to actual information - for a list of peripheral
links, visit the NIH's page.
Send your comments and questions to Elliot Lee.
