A fail2ban lite. IPQ BDB is a netfilter userspace daemon that can block or mark IP packets according to iptables rules that issue the corresponding -j NFQUEUE, as well as a Berkeley database of bad IPv4 addresses. A log parser and a banning utility add entries to the database. An IP has to be caught a configurable number of times before being blocked. Transitions between blocked and non-blocked are faded using probabilities. A halving period governs IP rehabilitation.
SQLCipher provides fully transparent encryption of SQLite databases. SQLCipher is a specialized build of the SQLite database that performs transparent and on-the-fly encryption. Using SQLCipher, an application uses the standard SQLite API to manipulate tables using SQL. Behind the scenes, the library silently manages security, making sure that data pages are encrypted and decrypted as they are written to and read from storage. SQLCipher relies on the peer-reviewed OpenSSL library for several encryption requirements, including the AES-256 algorithm, pseudo random number generation, and PBKDF2 key derivation.
Ice is a modern alternative to object middleware such as CORBA or COM/DCOM/COM+. It is easy to learn, yet provides a powerful network infrastructure for demanding technical applications. It features an object-oriented specification language, easy to use C++ and Java mappings, a highly efficient protocol (including protocol compression), asynchronous method invocation and dispatch, dynamic transport plug-ins, TCP/IP and UDP/IP support, SSL-based security, a firewall solution, and much more.
FLoP is designed to gather alerts with payload from distributed snort sensors on a central server and to store them in a database (PostgreSQL and MySQL are supported). On the sensor, the output is written to a process called sockserv. This process is threaded; one thread receives and buffers the alert packets, and the other thread forwards them to a central server. The output is decoupled from snort, which can proceed in sniffing instead of waiting for the output plugins. At the central server, a process called servsock gathers all alerts from the remote sensors and feeds them to the database. A short description of alerts with high priority together with the database ID can be sent via email to a list of recipients.