MinorFS combines a small set of cooperating userspace filesystems for Linux that provide private storage to pseudo persistent processes. This allows programs that are run by a user to keep some data safe from all potential malware that runs with all this users' privileges. It further implements simple password capabilities as a way to explicitly share access with other processes or users.
MixIt is a program which encrypts a given input file using a password and a level. Shifting and coding methods are used to make the input data unreadable. The strength of the encryption depends on the password, the level, and the length of the input data. A brute force code breaker, named breakit, is included for those who want to test the strength of MixIt. It includes features for unbreakable communication via email using one time pads and password books.
The Mobius verification environment supports the development of specifications, programs, and proofs of their security properties. It will support both source code and bytecode level verification, and be able to produce the output necessary for the generation of PCC certificates.
ModiWrap is a scriptable, configurable, paranoid setuid wrapper for CGI and other Web scripts (such as PHP). It aims at full compliance with the CGI specifications. It allows users to run their own CGI/webscripts with their own UID while minimizing the risk of compromising the host system. All resource limits and running time alarms can be configured on the fly on a per-user basis with an optional limits daemon. It can be made fully compatible with suexec, cgiwrap, and mod_php. It should be compatible with any Web server.
The modular syslog allows for an easy implementation of input and output modules. The modules that mantain compatibility with its precursor are included in the standard distribution along with four modules: om_peo (an implementation of PEO-1 and L-PEO, two algorithmic protocols for integrity checking), om_mysql and om_pgsql (modules that sends output to a mysql and postgresql database, respectively) and om_regex (a module that allows output redirection using regular expressions).
The Monkeysphere enables you to use the OpenPGP web of trust to verify ssh connections. SSH key-based authentication is tried-and-true, but it lacks a true public key infrastructure for key certification, revocation, and expiration. Monkeysphere is a framework that uses the OpenPGP web of trust for these PKI functions. It can be used in both directions: for users to get validated host keys, and for hosts to authenticate users.