adv-samba is a PHP class to batch audit SAMBA resources on remote hosts or large LANs. It's a very handy tool during network audits. For example, imagine a LAN with 500 workstations. You want to find any illegal MP3s on company machines. With this tool, you recursively dump the share directory structure. It works with Active Directory authentication too.
sessiond allows a cluster of SSL/TLS servers to share their session caches in order to prevent each node of the cluster from negotiating a separate session. SSL/TLS session is basically a set of secret values (symmetric encryption keys, MAC secrets) shared between a client and a server. The use of asymmetric cryptography required to establish new sessions is the main performance bottleneck of the SSL/TLS protocol.
FBAC-LSM is a security mechanism for Linux which retricts applications based on the features they provide, such as "Web Browser" or "Image Editor". By restricting the actions of applications, the damage which can be caused by malware or software vulnerabilities can be significantly reduced. Reusable policy abstractions, known as functionalities, can be used to grant the authority to perform high level features (for example using the Web_Browser functionality) or lower level features (such as using the HTTP_Client functionality) or to grant privileges to access any specified resources. Functionalities are parameterized, which allows them to be adapted to the needs of specific applications. Functionalities are also hierarchical; that is, functionalities can contain other functionalities.
Palm-Strip-Export is a utility to export your legacy PalmOS Strip databases to simple CSV files. Once your databases are exported you can print them, open them in Excel, or import them into a separate program. Most importantly, these export files will be directly importable to the iPhone when the desktop sync tool is released. This exporter only works with Palm Strip 2.0 databases.
TinyIDS is a distributed intrusion detection system (IDS) for Unix systems. It is based on the client/server architecture and has been developed with security in mind. The client, tinyids, collects information from the local system by running its collector backends. The collected information may include anything, from file contents to file metadata or even the output of system commands. The client passes all this data through a hashing algorithm and a unique checksum (hash) is calculated. This hash is then sent to one or more TinyIDS servers (tinyidsd), where it is compared with a hash that had previously been stored in the databases of those remote servers for this specific client. A response indicating the result of the hash comparison is finally sent back to the client. Management of the remotely stored hash is possible through the client's command line interface. Communication between the client and the server can be encrypted using RSA public key infrastructure (PKI).
When moving files between filesystems that have permissions and those that do not, the user home directory is populated with files of all sorts of permissions. UFPM (Uniform File Permission Modifier) has been designed to modify all files and directories to have a uniform permission set based upon their file type.
CreditCardNanny is a Web browser extension for Google Chrome and Mozilla Firefox that detects forms that otherwise look secure (with a proper and valid SSL certificate, encrypted, and seemingly safe to enter sensitive data such as credit card details) but actually then submit this form data in a cleartext email to the site administrators. This extension detects such forms and warns you of the possibility that sensitive information may be exposed in clear-text, putting you and your sensitive data at risk. You can test the extension by browsing to https://cc-nanny.appspot.com/test-secure-page, a dummy credit card form that uses a form emailer script, a very common pattern used on an alarmingly large number of Web sites.
freeDiameter is a framework in C for supporting the Diameter Base Protocol (RFC3588). Diameter is a protocol for authentication, authorization, and accounting; it is the successor of RADIUS. Applications can be loaded as modules. Example applications include a Diameter EAP server, a Diameter SIP server, and Diameter Accounting.
pam_ttylog is a PAM module to log console output of a login shell. pam_ttylog takes an approach that makes a script-like environment in the PAM session section of /bin/login. Thus, the log files are in a user-unreachable directory and have user-unreadable/unwritable permissions. As PAM module, it doesn't need to modify or replace the original /bin/login, getty, telnet, or libraries for its installation and operation.