Security App of the Year

CarolC · 01-04-2005, 02:48 AM

I vote Tripware .

chandj · 01-04-2005, 10:29 AM

nmap is too versatile. Tough choice, but it can do so much

predator.hawk · 01-04-2005, 02:29 PM

nmap

.

erraticassassin · 01-05-2005, 04:18 PM

Someone else has mentioned this as a missing option - Firestarter. For those of us who just have to look after a single home PC, it's a simple, solid solution for setting up a firewall. Much like ZoneAlarm on Windows - it just works.

Plus, when I had a couple of queries about the program, the lead developer dude was friendly and helpful. Gets my vote for that alone. Or would do, if it were an option...

jeremy · 01-05-2005, 07:37 PM

Firestarter has been added.

--jeremy

hari_seldon99 · 01-06-2005, 09:49 PM

Nobody added shorewall

It's easier to use than iptables, and less fancy-shmancy than guarddog/firestarter.
It has more config options than the GUI's

fmark · 01-08-2005, 01:18 PM

I use bitdefender more than any other proposed apps.
Simply efficient. http://linux.bitdefender.com/

nice_indian · 01-09-2005, 12:05 PM

tcpdump!! But i doubt weather it is a security application.

dylansmrjones · 01-11-2005, 12:03 AM

Can't vote... I want to vore for ClamAV and Firestarter ... just can't vote... unless I can vote twice or thrice ... can I vote for all them?

melinda_sayang · 01-12-2005, 08:54 AM

firestarter.... easy to make a firewall...... so vote goes here...

hari_seldon99 · 01-12-2005, 03:37 PM

Can firestarter forward ports? Can it do maclisting in dual-interface setups? Can it be administered remotely?

insyte · 01-13-2005, 10:34 AM

chkrootkit

zatriz · 01-15-2005, 02:33 AM

ethereal

xviddivxoggmp3 · 01-15-2005, 04:46 PM

ethereal

This is a network analyser.
Technically it is not a security tool.
Do not get me wrong, the capability of setting the nic to promiscuous mode and sniffing packets is a good way to test your network security, but it is not made for monitoring (tripwire) or preventing access (iptables/ipchains).

zaichik · 01-25-2005, 06:03 AM

I beg to differ. When our network is under a DDoS attack, we use ethereal to find out which IP is being hit so we can null route it and save the integrity of the rest of the network. From our other clients' perspective, we have maintained their servers' accessibility.

I see what you mean, though--it doesn't "prevent" things like the DDoS attack in the first place. I would still have to rate it as a security tool.