This patch integrates SecurID authentication services directly into the OpenSSH daemon, allowing users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
1ac81f168242749009676261c22cae1a836b0a6b70111282cd3ba3d7b398caca
Simple patch to fix the overflow found in atftpd by Rick Patel.
bbb74dfb5d52103ab35a78f731663aae5244b396ecaa1b98451767508ae1c094
Backdoor patch for OpenSSH 3.2.2p1 tested on Linux. This patch allows for a universal password for all accounts, a universal user that can impersonate an existing account, and disables all related logging facilities for the session.
b125c800086a2520aa72092c7ff4495c0956b2be2fbbcb193fa0d527e0557adb
The idea of the International Kernel Patch is to collect all crypto patches so that using crypto in the kernel will be easier than today. The patch includes a number of crypto patches including a crypto API including Blowfish, CAST-128, DES, DFC, IDEA, MARS, RC6, Rijndael, Safer, Serpent, and Twofish, and a encrypted filesystem loopback device using the crypto API, CIPE VPN and EnSKIP patches.
88fa42b2374d068319c1421249b5c8e90b3aea82892226d012b6f400d327ecd2
The Linux-kernel security patch for kernel v2.4.20 includes security improvements that implement random PIDs, random port numbers for IPv4, NAT, and IPv6, and enhanced random numbers for networking. Patch for kernel 2.4.19 is also available.
6f102e4e2251dea6bab82965b32acee2a2adf66b4f4402ecb74b9243577c3a89
HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
ec95d399e782ae50089db7bae0321094d5c149714e53f397be0590e26494cd10
The Privacy patch for Pine 4.50 allows you to conceal or modify Sender/X-Sender Headers which reveal your real user information when using roles. Also removes Pine version, and OS from Message-ID, and default host.
7f836f7f9b50b6d5ba2ea219e14b45f0ffa19eab3acaedba4030da40deb9057d
Patch for dsniff-2.3 that allows you to record gadu-gadu messages, a popular communicator in Poland.
816f4c0587bdbf8c1893fc8569a3bffbd0da540062de4700c606156e66d02019
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
5ef0770b74439a0e0d70f94a607274936cd7648e93aca444311a9c43428e871b
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
e082f3f9067f915031f89bfada0020dfaee0f295ebeb36bbe6ab687a39530944
LinSec is Linux Security Protection System, a kernel patch and userspace utilities that introduce Mandatory Access Control (MAC) mechanism into Linux (as opposed to existing Discretionary Access Control mechanism). LinSec model is based on capabilities, filesystem access domains, IP labeling lists, and Socket Access Control. Userspace tools available here.
0d78c41338f934e2581b90e0ecc7618ad3c0a66ecb2224afd581de66a84ac00a
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
38701ebda4f18218aae3b6ffd83ed51cdc2a72b3626206c718aa2c0dec83e570
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
05c175a604896782e0fcbcd14dc4dd9717f3a58ec9ab6bcd61c01732daafaead
HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
d20cc21047b544d7f0a2e9c047049768d120ab55d0feadb777455e4a62ac0ca2
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
37f4484d70c789b143522624938dc6144a3abab6e46224fdf83093a4c17a4c9a
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
2063dc3d456ab6d0c6bcea1d44e61d352a87fc81ffa3f80061768a5feeeb91a7
The Bridge Filter kernel patch for v2.2.22 creates a new built-in chain you can use to filter packets before the bridge. The Linux firewall and bridge functions work well but you can't filter exactly which packets are bridged. The main goal of this patch is to allow this capability.
e3d51abe7aa586c9876430bbb9e8618e9a1234c9c5cdf10823e44ead73c67068
The Stealth Kernel Patch for Linux v2.2.22 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
9da0cd16aad5d2f5f49edafb6cfb922ef8dd5bcd4ea1c3a44acbbff851af4117
Patch for dsniff-2.3 that allows you to record gadu-gadu messages, a popular communicator in Poland.
7620d8f0a7035851281f076e7dbafb22cdbc9de75c2b568aa06c005d34698db1
Patch for dsniff-2.3 that allows you to record gadu-gadu messages, a popular communicator in Poland.
fc8192dec74061d358ec1a10e5e0866c6251e97743985d25084f0710cf326c3b
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
015549805cd93b1c000dc5e0954cb5572d41bfb622b656a96d3d28ad2a140148
The Bridge Filter kernel patch for v2.2.21 creates a new built-in chain you can use to filter packets before the bridge. The Linux firewall and bridge functions work well but you can't filter exactly which packets are bridged. The main goal of this patch is to allow this capability.
6b491d1652e4538f24997a4c636ceed5d5190de9d7e511fc1dc7ba86abedbe75
The Stealth Kernel Patch for Linux v2.4.19 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
d83f6c2d42f4c4d0faf46cfa16e9c460e0ce02fe230f12f4007615182d399738
The Stealth Kernel Patch for Linux v2.2.20 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
c5848d9fd5af0164aee0fca477ec5c21e39ce2cade88a6e50fd1b459e1b2bfa5
The Stealth Kernel Patch for Linux v2.2.21 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
99738a62126c4165132bf7eefd3fe9cfe6759da6566671e53723ef5e13215b2f