Network Security Application of the Year

jeremy · 01-07-2009, 02:03 PM

What's your favorite network-based security tool?

--jeremy

linuxlover.chaitanya · 01-07-2009, 11:26 PM

Untangle is also a good choice to be there. Has got a lot of options. Agree some of them are available on paid version but then still its open source.

Nikosis · 01-08-2009, 12:05 AM

At some point it's gonna be hard to compare some of these tools due to differences in service they provide , for example snort & nmap, and then fwBuilder. All I'm saying that network security is wide range and it should be divided on sub polls.

fail2ban can be useful too.

jeremy · 01-08-2009, 08:55 AM

I agree that this is one of the more unwieldy categories. Next year it's likely that the "Live Distribution" poll will be removed, in favor of a "Security Distribution" poll, which should help this category quite a bit.

--jeremy

ncsuapex · 01-08-2009, 12:03 PM

Again, so many good ones to choose from, nmap, snort, clamav, tcpdump, are ones I use daily. But lately I've really been using tcpdump a lot and have been pleased with how much useful data you can collect to help trouble shoot network security with.

archtoad6 · 01-10-2009, 07:42 AM

Quote:

Originally Posted by jeremy

Next year it's likely that the "Live Distribution" poll will be removed, in favor of a "Security Distribution" poll, which should help this category quite a bit.

Perhaps instead of removing the "Live Distribution" poll, it should become the "Rescue Distribution" poll. I've used Knoppix & MEPIS in the past, & recently got turned on to to TRK (Trinity Rescue Kit). Recovery/rescue/diagnosis/discovery is an important niche.

richlv · 01-10-2009, 08:38 AM

i'd suggest replacing nessus with openvas. after nessus went closed source, openvas picked up the last opensourced version and continued from there.

jeremy · 01-10-2009, 09:58 AM

OpenVAS has been added.

--jeremy

Neminath · 01-11-2009, 12:25 AM

i use tcpdump and wireshark frequently

portamenteff · 01-12-2009, 03:37 PM

I use WireShark, but many others serve good purposes as well.

CaptainInsane · 01-13-2009, 12:35 AM

Another vote for fail2ban here.

Best thing I have found so far to block out brute force
type attacks on my vsftp and tomcat webservers.

My logs will be much shorter now...

halovivek · 01-13-2009, 07:27 AM

Wireshark does fine.

archtoad6 · 01-13-2009, 10:25 AM

What about:

archtoad6 · 01-13-2009, 10:42 AM

For those who are interested, here are the freshmeat links for this poll:

jeremy · 01-13-2009, 11:38 AM

archtoad6, we'll consider those for next year.

--jeremy