cipherdyne.org

Michael Rash, Security Researcher



2006 Blog Archive    [Summary View]

« Previous

Software Release - psad-1.4.5

The 1.4.5 release of psad is ready for download. Here is an excerpt from the ChangeLog:
  • Bugfix in IPTables::Parse to allow the limit target to apply to logging rules.
  • Made calls to chain creation and jump rule functions for only every 100 block calls in auto-IDS mode.
  • Bugfix to make sure /var/run/psad directory exists at startup since this directory is removed by some Linux distributions at boot time.
  • Bugfix for zero masks in auto_dl; this allows a network of "0.0.0.0/0" to be specified.
  • Enhanced -D output to include "uname -a" and "perl -V" output.

ShmooCon II Talk

At the second ShmooCon conference (January 13-15 in downtown D.C.) I will be giving a talk entitled Advances in Single Packet Authorization. This talk will highlight the new features available in fwknop as of the 0.9.6 release, which will be made available at ShmooCon. These features include GPG authentication, a patch to OpenSSH that integrates the fwknop client, and the ability to require UNIX crypt() passwords on the fwknopd server, and more. Stop by to say "hello" if you are going to attend ShmooCon!

Slides can be found here.
« Previous