LINUXsecure_LOGO
Issues on Linux and Security
 
-->
button Security Tasks
Protection
Detection
Reaction
 
button Description
Firewall
Packetfilter
Proxies
IDS
Policy
 
button Protection
In general
Iptables
Good Rules
SSH
Jail
 
button Detection
In general
Snort
Sniffing
Tripwire
Portsentry
Virus scanner
Rootkit scanner
Security scanner
 
button Hardening
In general
Openssh
Tinyproxy
 
button Bridging
Bridge
Bridging Firewall
Bridging IPS
 
button Other
Home
Vulnerabilities
Books
Links
F2html.pl
mp3riot
Downloads
News
Pigsparty
Gallery
Contributors
Impressum
 
button Search
Google
This Site

 
search in regular content
news
vulnerabilities
books
home
button Home
 

Welcome to LinuxSecure

I found some scripts on my workstation that have not been published and may be interesting for some people. Actually, I will not prepare them for publishing, but you can contact me, if you are interested in one or more of them.

  • A tool for the backup of network components. The script runs as a daemon and can be configured via config files. It reads in the config files containing the passwords of the components once, so you can store them in a crypt storage. There exist severeal templates for ssh, scp, telnet. The intention is to make automated backups from router, switches, firewalls etc.
  • Postfixanalyser was written for the trendmicro mail virusscanner. You can search for mails and you will get a status for the found mails: when did the system receive it, when was it working with the mail the last time, whats the status of the mail, where there any problem while delivering the mail. The second feature was a simple statistic: bytes and number of mails received and send, mails by status (received from extern, queued, sent to trend, received from trend, queued, delivered) and mails by problem (deferred and not sent to scanner (scanner rejected), deferred and not sent to scanner (scanner down), sent to trend, but deferred before, dereffed and not sent to extern (mta rejected), deferred and not sent to extern (mta down), sent to extern, but deferred befor).
  • A logscanner and a scanner for the checkpoint objects file.
  • A tool, that parses the registry of the genugate firewall and produces a more human readable output in html.
  • A ftp-script for the honeynet.
  • Various backupscripts in Perl and Bash.
  • Various iptables scrips.
  • A script called minilinux to create a small linux out of a huge running system.
  • Pigsparty was a small projetct that was never finished. The idea was to convert snort rule sets into iptables rule sets.
  • A snort admin interface in php.
  • A perlmodule and some programs (e.g. mfl) for the preparation and analysis of longitudinal data with a focus of same domains.

back to top
button Whats New
[2005-02-18] mp3riot version 1.3 released
[2004-10-08] mp3riot version 1.2 is out.
[2004-04-30] Added section Bridging
[2004-01-09] working progress on mp3riot version 1.2
openSUSE is looking for information from its users about the distribution by way of a survey, which runs through the end of February. The survey is meant to "give feedback to the openSUSE project about the distribution, the openSUSE tools environment and the project in general. Let us know where things are in good shape and areas where improvement is needed."Click below for the full announcement.
openSUSE Survey 2010
James Bottomley has announced this year's Linux Storage and Filesystems Summit, which will be held just prior to LinuxCon in Boston on August 8 and 9. It will be held in conjunction with the Virtual Memory (VM) summit, so there will be three tracks (storage, filesystems, VM) as well as joint meetings for all participants. Proposals for discussion topics and requests for invitations are being solicited; click below for the full announcement. "Presentations are allowed to guide discussion, but are strongly discouraged. There will be no recording or audio bridge, however written minutes will be published as in previous years."
Linux Storage and Filesystems Summit cfp
Fedorahas updated chrony(F11, F12: denial of service) and ocsinventory(F11, F12: multiple vulnerabilities). Mandrivahas updated squid(denial of service) and kernel(multiple vulnerabilities). SUSEhas updated kernel(multiple vulnerabilities).
Security updates for Monday
There are concerns in the GNOME accessibility development community about what the Oracle takeover of Sun means for the efforts led by Sun's Accessibility Project Office (APO). Orca project lead Willie Walker has been laid off and is looking for work, possibly in areas that will not allow him to continue contributing to Orca. In addition, assistive technology specialist Joanmarie Diggs has publishedan open letter to Oracle concerning the future of the APO and its work. "Last week, Oracle laid off two more members of Sun's already-decimated APO. One of those let go happened to be both the Orca project lead and the GNOME Accessibility project lead, Willie Walker. I truly hope this was an oversight on Oracle's part, and one that will be rectified very soon. Because if it is not, and if no other company steps forward to continue this work, the accessibility of the GNOME desktop will become the open source equivalent of an unfunded mandate, doomed ultimately to fail."
GNOME accessibility developers concerned about Oracle's commitment
ComputerWorld reportson the outcome of the charity auction at linux.conf.au. "A $12,750 donation from Linux Australia on the night brought the total funds raised for the air rescue service to more than $33,000. [...] 'Free open source software is founded on generosity and these supporters have certainly taken that value to heart,' Life Flight Trust CEO David Irving said in a statement. 'The funds raised will enable 13 people to receive emergency flights, which is a great outcome for the community.'"
Linux Conf raises $33,000 for charity (ComputerWorld)
Linus has taken some time off from playing with his new phoneto release the 2.6.33-rc7prepatch. "I have to admit that I wish we had way fewer regressions listed by this time... But we've certainly fixed a few things, and it's been a week, so here's -rc7. I wish I could say that it's the last -rc, but I strongly doubt that, and we'll almost certainly have at least one more."See the full changelogfor the details.
Kernel prepatch 2.6.33-rc7
The GNOME Journal has posted a new set of articles, including an interview with Jonathan Thomas(OpenShot video editor creator), a Banshee update, a summary of the 2009 Boston Summit, an overview of PiTiVi, and a look at writing multimedia applications with Vala.
New GNOME Journal articles
Occasionally, your editor will be struck by a series of topics all associated with a common theme. The recent fuss about Android's presence (or the lack thereof) in the mainline kernel ties in well with a couple of other items of notice: the Nexus One phone and the role of free software on the Android platform in general. Click below (subscribers only) for a discussion of Android from three different points of view.
[$] Three short stories, all about Android
The Linux Foundation has announcedthe 2010 edition of the "We're Linux"video contest. "The contest is calling all community members and amateur filmmakers to share with the public what a 30-60 second Linux-focused spot for the Super Bowl might look like. This theme is not a requirement for entry; however, videos that can demonstrate the benefits of Linux to the general public are likely to receive more community votes. The submissions should aim to inspire people to use Linux, create conversations among the public, and convey the power and ideals of Linux."
Linux Foundation Announces 2010 "We're Linux"Video Contest
Ryan Paul takes a lookGIMP 2.8. "The venerable GNU Image Manipulation Program (GIMP) is undergoing a significant transformation. The next major release, version 2.8, will introduce an improved user interface with an optional single-window mode. Although this update is still under heavy development, users can get an early look by compiling the latest source code of the development version from the GIMP's version control repository."
Hands-on: new single-window mode makes GIMP less gimpy (ars technica)
Fedorahas updated gmime22(F11, F12: arbitrary code execution), ejabberd(F11, F12: remote denial of service), dokuwiki(F11, F12: cross-site request forgeries), kernel(F11: multiple vulnerabilities), and nss(F12: man-in-the-middle/SSL injection). SUSEhas updated kernel(multiple vulnerabilities). Ubuntuhas updated kernel(multiple vulnerabilities).
Security advisories for Friday
Canonical has announcedthat its new chief operating officer will be Matt Asay. "'As more companies and people are embracing Ubuntu for their day-to-day computing, we felt it critical to bring in a person who knew not just open source, but has a long experience in making Linux relevant to businesses and users alike,' said Jane Silber, current COO and upcoming CEO, Canonical. 'We think Matt brings to Canonical the perfect blend of industry, executive and community savvy'"
Matt Asay becomes Canonical's COO
The Register reportson changes to the UK government's open source policy. "The UK government has rejigged its open source and open standards software procurement policy, following pressure from OSS vendors last autumn. Early last year the Cabinet Office revised its rules on public sector open source software purchases, but many OSS players complained that the policy amendments didn’t go far enough. Others grumbled that the government was failing to police its own rules."(Thanks to Paul Sladen).
UK.gov tweaks open source policy small print (The Register)
Registration is now openfor the first ever Texas Linux Fest. It will be held at the Monarch Event Center in Austin on Saturday April 10. There will also be evening social events on Friday and Saturday. "Exhibit space is filling up quickly, but if your company, organization, or open source project would like to reserve a booth, you can do so by visiting www.texaslinuxfest.org/sponsorship. There is still time for interested parties to submit a talkfor consideration before the February 15 deadline."Click below for the full announcement.
Registration now open for Texas Linux Fest 2010
Linux Planet reviewsLinux Mint 8. "When last we looked at Linux Mint we gave it high marks on the user-friendly scale for administration and productivity applications. The latest release takes the distro to new heights of the same with a few new added touches to boot. Linux Mint 8 (Helena) is based on Ubuntu 9.10 and delivers all the basic capabilities you would expect in an Ubuntu distribution."
Fresh Version of Linux Mint Offers Tweaks and Updates (Linux Planet)
Sun Java SE November 2009 Multiple Security Vulnerabilities
Vuln: Sun Java SE November 2009 Multiple Security Vulnerabilities
Oracle 11gR2 Remote Command Execution Vulnerability
Vuln: Oracle 11gR2 Remote Command Execution Vulnerability
Linux Kernel 'drivers/scsi/gdth.c' Local Privilege Escalation Vulnerability
Vuln: Linux Kernel 'drivers/scsi/gdth.c' Local Privilege Escalation Vulnerability
Linux Kernel 'hfc_usb.c' Local Privilege Escalation Vulnerability
Vuln: Linux Kernel 'hfc_usb.c' Local Privilege Escalation Vulnerability
[security bulletin] HPSBUX02503 SSRT100019 rev.1 - HP-UX Running Java, Remote Increase in Privilege, Denial of Service and Other
Bugtraq: [security bulletin] HPSBUX02503 SSRT100019 rev.1 - HP-UX Running Java, Remote Increase in Privilege, Denial of Service and Other
RE: Samba Remote Zero-Day Exploit
Bugtraq: RE: Samba Remote Zero-Day Exploit
[ MDVSA-2010:034 ] kernel
Bugtraq: [ MDVSA-2010:034 ] kernel
[security bulletin] HPSBMA02487 SSRT100024 rev.1 - HP Operations Agent Running on Solaris 10, Remote Unauthorized Access
Bugtraq: [security bulletin] HPSBMA02487 SSRT100024 rev.1 - HP Operations Agent Running on Solaris 10, Remote Unauthorized Access
News, Infocus, Columns, Vulnerabilities, Bugtraq ...
More rss feeds from SecurityFocus
-->