LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   2005 LinuxQuestions.org Members Choice Awards (http://www.linuxquestions.org/questions/2005-linuxquestions-org-members-choice-awards-69/)
-   -   Security App of the Year (http://www.linuxquestions.org/questions/2005-linuxquestions-org-members-choice-awards-69/security-app-of-the-year-409052/)

jeremy 01-28-2006 04:25 PM

Security App of the Year
 
Yes, we know many of these apps are not directly comparable. The real question should be, which one does its job the best.

--jeremy

ssfrstlstnm 01-29-2006 12:02 PM

shorewall?
guarddog?

NeoAndersn007 01-29-2006 09:56 PM

nmap is awesome. Second choice would be rkhunter.

Alien_Hominid 01-30-2006 01:47 AM

They are so different. Can't compare them, so I'll of course vote for nmap. Clamav and firestarter would by my other choices.

Daengbo 01-30-2006 09:08 AM

Snort logs are my lifesaver

carambar 01-30-2006 11:34 AM

Oh, this is too difficult. There's so many worthy contenders. I would have liked to have seen metasploit listed as well.

I think I'm gonna have to have a beer whilst I think about this some more. ;)

Tsuroerusu 01-30-2006 12:29 PM

Where's the option for AppArmor?

anticapitalista 01-30-2006 01:40 PM

For a home user on one box the one I can't do without is firestarter.
Who needs anti-virus on linux?:)

ALInux 01-30-2006 01:44 PM

Firestarter...nmap...nessus..ethereal...snort...:D...are there non exclusive radio buttons around :D

Tinkster 01-30-2006 03:00 PM

Firestarter, shorewall, guarddog ... they're all just a frontend to
a piece of kernel functionality; none of them are security apps in
their own right. Personally I highly value nmap, always good to
a) know your attackers and b) let them know they're being watched ;}

Kensai 01-30-2006 04:01 PM

ClamAV is the one

Alessandro 01-30-2006 11:10 PM

Firestarter. But I find AppArmour should have been there.

KimVette 01-31-2006 12:44 AM

Quote:

Originally Posted by anticapitalista
Who needs anti-virus on linux?:)

Anyone who has:

- apache with SSL enabled
- Samba shares
- email services

Remember: while an Apache exploit really isn't a *nix vulnerability, strictly speaking (it's an app, not an OS), there are exploits in certain versions of Apache and ClamAV comes with signatures to identify the slapper variants which compile on Linux.

Likewise, if you share out files via samba (or NFS) with Windows machines, you want to scan those shares so that you don't end up being a handy storage place for viruses.

Lastly, you don't want to forward virus attachments to others, right? The viruses may not run on your machine (not even under wine!) but they can be a nuisance to others.

anticapitalista 01-31-2006 03:00 AM

Quote:

Originally Posted by KimVette
Anyone who has:

- apache with SSL enabled
- Samba shares
- email services

Remember: while an Apache exploit really isn't a *nix vulnerability, strictly speaking (it's an app, not an OS), there are exploits in certain versions of Apache and ClamAV comes with signatures to identify the slapper variants which compile on Linux.

Likewise, if you share out files via samba (or NFS) with Windows machines, you want to scan those shares so that you don't end up being a handy storage place for viruses.

Lastly, you don't want to forward virus attachments to others, right? The viruses may not run on your machine (not even under wine!) but they can be a nuisance to others.

I don't use apache, samba and I never forward emails.:)

gunnix 01-31-2006 11:12 AM

I like ettercap to scan for hosts on the network..


All times are GMT -5. The time now is 02:37 AM.