LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   2008 LinuxQuestions.org Members Choice Awards (http://www.linuxquestions.org/questions/2008-linuxquestions-org-members-choice-awards-83/)
-   -   Network Security Application of the Year (http://www.linuxquestions.org/questions/2008-linuxquestions-org-members-choice-awards-83/network-security-application-of-the-year-695649/)

jeremy 01-07-2009 03:03 PM

Network Security Application of the Year
 
What's your favorite network-based security tool?

--jeremy

linuxlover.chaitanya 01-08-2009 12:26 AM

Untangle is also a good choice to be there. Has got a lot of options. Agree some of them are available on paid version but then still its open source.

Nikosis 01-08-2009 01:05 AM

At some point it's gonna be hard to compare some of these tools due to differences in service they provide , for example snort & nmap, and then fwBuilder. All I'm saying that network security is wide range and it should be divided on sub polls.

fail2ban can be useful too.

jeremy 01-08-2009 09:55 AM

I agree that this is one of the more unwieldy categories. Next year it's likely that the "Live Distribution" poll will be removed, in favor of a "Security Distribution" poll, which should help this category quite a bit.

--jeremy

ncsuapex 01-08-2009 01:03 PM

Again, so many good ones to choose from, nmap, snort, clamav, tcpdump, are ones I use daily. But lately I've really been using tcpdump a lot and have been pleased with how much useful data you can collect to help trouble shoot network security with.

archtoad6 01-10-2009 08:42 AM

Quote:

Originally Posted by jeremy (Post 3401135)
Next year it's likely that the "Live Distribution" poll will be removed, in favor of a "Security Distribution" poll, which should help this category quite a bit.

Perhaps instead of removing the "Live Distribution" poll, it should become the "Rescue Distribution" poll. I've used Knoppix & MEPIS in the past, & recently got turned on to to TRK (Trinity Rescue Kit). Recovery/rescue/diagnosis/discovery is an important niche.

richlv 01-10-2009 09:38 AM

i'd suggest replacing nessus with openvas. after nessus went closed source, openvas picked up the last opensourced version and continued from there.

jeremy 01-10-2009 10:58 AM

OpenVAS has been added.

--jeremy

Neminath 01-11-2009 01:25 AM

i use tcpdump and wireshark frequently

portamenteff 01-12-2009 04:37 PM

I use WireShark, but many others serve good purposes as well.

CaptainInsane 01-13-2009 01:35 AM

Another vote for fail2ban here.

Best thing I have found so far to block out brute force
type attacks on my vsftp and tomcat webservers.

My logs will be much shorter now...

halovivek 01-13-2009 08:27 AM

Wireshark does fine.

archtoad6 01-13-2009 11:25 AM

What about:

archtoad6 01-13-2009 11:42 AM

For those who are interested, here are the freshmeat links for this poll:
  1. Nmap
  2. Snort (SNORTŪ)
  3. Nessus
  4. ClamAV
  5. Wireshark (formerly Ethereal)
  6. tcpdump/libpcap
  7. Kismet
  8. fwBuilder (Firewall Builder)
  9. Firestarter
  10. dsniff
  11. Guarddog
  12. Shorewall (Shoreline Firewall)
  13. psad
  14. p0f
  15. SmoothWall
  16. IPCop
  17. Untangle
  18. OpenVAS

jeremy 01-13-2009 12:38 PM

archtoad6, we'll consider those for next year.

--jeremy


All times are GMT -5. The time now is 08:06 AM.