OpenFWTK is an application proxy toolkit which inherits the ideology of TIS fwtk and maintains API backwards compatibility. The design goal is to make it simple yet powerful; no performance hacks are allowed in the code and library dependencies are reduced to a minimum. It is a true application layer filter. It features unified pluggable content inspection for the most frequently used protocols, NAC (Network Admission Control), and the ability to define fine-grained Internet access policy based on browser identification.
mxallowd is a daemon for Linux Netfilter (using libnetfilter-queue) and BSD pf (using pflog) which implements a slightly improved nolisting mechanism. It requires your name server to be configured to return two MX IP addresses, and the one with higher priority must not run a mail server on port 25. mxallowd blocks attempts to connect to the mail server unless the sender tries to connect to the first mail server before the second. Since most spammers will attempt direct connections to each mail server, they will be blocked.
Vanguard provides enterprise class anti-virus and anti-spam protection to multiple internal mail servers, including the Gordano Messaging Suite, Microsoft Exchange, and IBM Lotus Notes/Domino. Dual anti virus scanning engines provide both traditional signature based virus protection and advanced Zero Hour protection. Any number of internal servers can be protected from a single Vanguard server. Each of those servers may be servicing the same Internet domain, separate Internet domains, or even multiple Internet domains on a single server. There is no limit to the number of protected domains or message throughput.
The deepOfix Mail Server makes it possible for organizations with minimal technical expertise to have robust server infrastructure. deepOfix offers unprecented ease of use, doesn't require prior GNU/Linux experience and is backed by a full-time development and support team. deepOfix features LDAP-based directory services for user account management, email delivery, distribution lists, and addressbooks. It also includes built in tools for spam and virus control, webmail, and fetching email.
Amber sits in the tcpserver chain for qmail and implements an "amber list" for incoming mail. This neither accepts nor rejects connections, but implements a number of timing-related tricks to fake out spam and virus software that doesn't implement SMTP correctly. For example, it can defer requests from new IP addresses for a few minutes before it starts passing connections on to smtpd, pause and check for programs that send data before the HELO, and otherwise make things rough for bandit bulk mailers.
redWall is a bootable CD-ROM firewall which focuses on Web-based reporting of the firewall's status. It includes Snort, snortsam, dansguardian, and support for fwbuilder, squidguard, reporting (using BASE/sarg/ntop/webfwlog), VPN (Openswan/PoPToP/Openvpn), Spam Filtering (spamassassin, dcc, razor2, clamav, amavis-new, dspam and maia mailguard), and mail-based, alerting. Configuration data are stored on a floppy or USB disk.
Extensible Messaging Platform is a spam-filtering firewall server application. It protects any SMTP mail server from spam, email- orne viruses (including dangerous auto-launch viruses) and other objectionable content. It filters mail using complex contextual signatures (not simple keyword lists). The use of contextual signatures results in high success and extremely low false-positive rates. Additional features include automatic XML extraction/database insertion, optional POP3 retrieval, comprehensive user-definable contextual filtering, content-based message routing and developer API.
Firegate Server is a self-managing server operating system designed for small and mid-sized businesses. It securely connects offices to the Internet and to each other, protecting valuable electronic information. Office staff can surf the Web, send and receive email, host the company Web site, share files, host a customer database, and more. It is controlled through a simple Web browser or mobile telephone interface and managed by an artificial intelligence-based administration service.
Mail2sh makes it possible to carry out shell commands by email. Email is sent to a particular user on your host and the commands will be carried out if the user and password given matches ones in /etc/passwd. Commands are executed with the user's privileges, and combined with a PGP module ensures a certain level of security for use. Note that the system is not natively encrypted, so use of an encryption mechanism is highly recommended for security reasons.