SOFFIC is a Linux kernel patch that provides file integrity control integrated into the normal system operation (on-the-fly). It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software (e.g. malicious tools), etc.
|Tags||Operating System Kernels Linux Monitoring Security|
Release Notes: A fix for a bug that prevented you from mounting floppies.
Release Notes: This version updates to kernel 2.4.19, includes EXECDENY enabled by default, if an error on digest calculation occurs the access is now denied, and a small MD5 and SHA1 test was added to the SOFFIC initialization process.
Release Notes: This release includes a lot of code cleanups. There is a completely new syntax for the Hash List description.
No changes have been submitted for this release.