Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts that can be used separately or in combination. The first part is a small patch against the PHP core that implements a few low-level protections against buffer overflows or format string vulnerabilities. The second part is a powerful PHP extension that implements all the other protections. Suhosin is binary compatible with plain PHP installations.
PyKCS11 is a PKCS#11 wrapper for Python. It lets you access almost all PKCS#11 functions and data types using any PKCS#11 library, such as the various modules supplied by smartcard vendors. It comes with two interfaces: a low level and very thin interface over the original PKCS#11 API, generated using the SWIG compiler (designed for library tests), and a high level interface that offers simpler access (with few limits) to the PKCS#11 APIs.
Fotoblog is a web based picture gallery that automatically receives and publishes real-time pictures from your mobile phone. Every picture is published along with the text sent from the mobile phone. It features POP3 support, STDIN support (when piped directly from sendmail), image pagination with a configurable number of columns and images per page, an image rotation function via the Web, photo tag editing via the Web, automatic thumbnail generation, a user access log with originating IP and network display (php-whois required), user account maintenance via the Web, a photo search function, multi-language support, and EXIM support (for extracting the real picture date and time).
smtpd is a lightweight mail server whose sole purpose is to receive incoming messages and deliver them to local users. Its main "feature" (or non-feature, really) is to be completely unable to relay messages to adjacent servers: if an incoming message is not addressed to a local mailbox, smtpd will reject it. Another convenient feature is its automatic grey-listing of clients that allows you to efficiently reject spammers based on their behaviour. It can handle incoming email traffic for an unlimited number of domains (i.e. act as a MX for these domains) without the need for any configuration (other than creation of users' mailboxes).
rootpretender is a system that enables special file operations such as the creation of block special and character special device nodes and unlimited chown()ing of files for non-root users of Unix systems. It does this by faking special file operations. For example, chown() is not executed, and mknod() creates regular files instead of device nodes. These operations are remembered, so next time a process under rootpretender's control examines an affected file with stat() or a similar system call, the fake information is returned. It uses LD_PRELOAD and includes patches for rsync 2.6.6 and rsync 2.6.9 for use on systems without LD_PRELOAD support. These make it possible to copy file ownership and device nodes even if root access is not available on the target.