SmoothWall Express is a network firewall, designed with home and small business users in mind. It is based upon a security-hardened subset of the GNU/Linux operating system and is completely free to use, download, and distribute. SmoothWall Express offers facilities and features normally only seen in expensive commercial offerings.
NACS provides you a comfortable and secure way to provide untrusted computers access to your TCP/IP-based (v4) LAN/WAN. The system guarantees that only registered users are able to use network resources. In contrast to other solutions, like PPTP or IPsec, it is not necessary to install program-specific client software. The client machines only need a DHCP client (automated networkconfiguration) and an SSL capable Web browser. The server needs a 2.4 kernel, Jakarta-Tomcat Servlet Engine, JDK 1.3/JDK 1.4, Apache, MySQL, and firewall which secures your network in general. NACS gets its login and password data from a normal Linux-style passwd file. This implementation supports the integration of other authentication mechanisms (such as LDAP).
MailStripper Pro is a mail scanner that aims to remove spam and viruses from incoming mail. It recognises and decodes many obfuscation techniques used by spammers and uses several different mechanisms to recognise spam which are immune to Bayes poisoning, and has achieved real-world success of over 99.8%. It is MTA-independent and does not implant itself into your mail server. Instead, it functions as a proxy, allowing the MTA to reside on a different server.
Squidalyser is a Squid log file analyzer that is designed to allow per-user scrutiny. It allows a non-technical user to extract information about Web usage patterns including the type of information downloaded, the sites visited, the graphics downloaded, and the amount of information (per-byte or per-file) accessed. All functions are accessed through a Web interface.
ssl-cert-check is a Bourne shell script that checks the expiration status of digital certificates on SSL servers. It supports both interactive and batch modes and easily integrates with cron. It provides custom expiration thresholds and can be configured to send email if a certificate is close to expiring.
Antispyd is an HTTP/HTTPS threat filtering proxy server. The main characteristic of this project is the modularity of his conception. The program is organized around an HTTP/HTTPS gateway service and a set of filters that can be enabled or disabled, and are all configurable with a single configuration file. Current filters are: URL filtering, content filtering, content-type filtering, cookie removal, pop-up removal, shell code attack blocking, Web traffic anonymizing, and a signature-based filtering engine. All filtering is done on the fly, without blocking downloads in any case. It uses only POSIX primitives and is built with autotools, and was created with security in mind.