Program Guard allows the user of a Linux workstation to specify which applications are allowed to make TCP/IP connections to the Internet. Application program names can be specified by listing them in a file (Static Mode) or by querying the user (Query Mode). In Query Mode, connection attempts by unknown programs result in a Program Guard dialog box being displayed. In addition to providing connection information, this gives the workstation user the option of allowing or blocking the program either for the current instance of the program or for all future instances. It consists of a daemon, a kernel module, and a GUI interface component and makes use of the Linux Netfilter interface.
XOTcl provides a highly flexible, reflective, component-based object oriented environment that integrates language support for high level object oriented concepts (which are not found in other languages) with reasonable performance. XOTcl is an extension of TCL and was derived from the impressive OTcl language developed by D. Wetherall and C. Lindblad at MIT in 1995 and extended in various ways. XOTcl's language constructs explicitly aim at the complexity in a component gluing layer that is not solved by traditional object orientation in the style of C++ or Java.
Joseph is a Python class and program that parses config files into iptables commands. It supports ACL definitions to reduce the repetition of rules. The config file format is a custom, native English-like format that supports internal, external, and DMZ interfaces with allowed, masqueraded, and redirected services (ports).
The Linux dshield.org Perl Client package consists of an updated Linux dshield.org Perl client for submitting kernel firewall filter log entries to dshield.org. It has been written to implement tighter coding and better processing than the Perl client currently available on dshield.org.
pks-commands.php3 allows your Web server to search and add PGP/GPG keys from the public keys out there. It takes the TCP 11371 port connection and does it all on the web server. It is good in environments where the client machines are unable to get to arbitrary TCP ports (such as behind tightened firewalls).