[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Some Security Tools

Subject: [cobalt-users] Some Security Tools
From: Paul Ramsey <pramsey@xxxxxxxxxxxxxxx>
Date: Thu Jun 1 11:00:28 2000

I have put up a small site with access to RPMs of some useful tools I
like to increase security on my boxen:

 - stunnel, compiled against the openssl libraries included w/ the RaQ3
 - portsentry, a truly excellent guard against anonymous crackers

Stunnel is an SSL wrapper program which you can use to provide SSL
enabled mail services: for example, just install the RPM and add
'/usr/sbin/stunnel -r pop-3 -d spop3' to the bottom of rc.local and you
have easily enabled pop3-over-ssl for your system. Beats sending
passwords in the clear.

Portsentry is a super-excellent tool from Psionic: it watches unbound
ports for port scans and when it detects them, it blackholes all other
packets coming from the scanner. This stops cracks at the early "testing
out the system" stage, because from the point of view of the cracker,
you disappear right off the net as soon as they hit an unbound port. If
they cannot get packets to you, they cannot crack you.

The site is at http://linux.refractions.net. I'll be adding my RPM for
logcheck soon, another very good tool from Psionic.

Happy admin'ing,
Paul

-- 
      __
     /
     | Paul Ramsey
     | Refractions Research
     | Email: pramsey@xxxxxxxxxxxxxxx
     \_

Prev by Date: Re: [cobalt-users] Rebooting the RaQ
Next by Date: Re: [cobalt-users] [RaQ2] Front Page - File Lock
Previous by thread: RE: [cobalt-users] Rebooting the RaQ
Next by thread: [cobalt-users] how do I change the host and domain for my master virtual site?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index