Section: .. / UNIX / patches /
| /// File Name: |
linsec-0.8.0-2.4.18.patch.gz |
Description:
|
LinSec is Linux Security Protection System, a kernel patch and userspace utilities that introduce Mandatory Access Control (MAC) mechanism into Linux (as opposed to existing Discretionary Access Control mechanism). LinSec model is based on capabilities, filesystem access domains, IP labeling lists, and Socket Access Control. Userspace tools available here.
| | Homepage: | http://www.linsec.org | | File Size: | 79064 | | Last Modified: | Oct 18 02:25:09 2002 |
| MD5 Checksum: | bafaff248a277cd290044793f06872fb |
|
| /// File Name: |
linux-2.0.33.race.kernel.patch |
Description:
|
Unavailable.
| | File Size: | 3281 | | Last Modified: | Aug 16 20:05:19 1999 |
| MD5 Checksum: | aa1be19228c890f65f43c2e79dcd99b4 |
|
| /// File Name: |
linux-2.2.18-stealth1.diff |
Description:
|
The Stealth Kernel Patch for Linux v2.2.18 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Fixed 2.2->2.4 connectivity problems and ported to kernel 2.2.18. | | File Size: | 17836 | | Last Modified: | Dec 20 16:03:03 2000 |
| MD5 Checksum: | a0a77e93859e7bd2b2dba329fc459516 |
|
| /// File Name: |
linux-2.2.19-sf1.tar.gz |
Description:
|
Linux Kernel Patch from the segfault.net project - This patch for kernel v2.2.19 allows you to specify GID's which are allowed to bind to each interface. This patch could be very useful for shell providers or admins who wants to restrict the using of more interfaces.
| | Author: | Andi | | Homepage: | http://segfault.net | | File Size: | 7446 | | Last Modified: | Apr 16 20:52:27 2001 |
| MD5 Checksum: | 32dfda21cd473387d033e608e02230ed |
|
| /// File Name: |
linux-2.2.20-stealth.diff.gz |
Description:
|
The Stealth Kernel Patch for Linux v2.2.20 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Now works with kernel v2.2.20. | | File Size: | 5145 | | Last Modified: | Aug 27 01:52:57 2002 |
| MD5 Checksum: | 9281b0f604f779c4f1204795a22cf07b |
|
| /// File Name: |
linux-2.2.21-brfw.diff.gz |
Description:
|
The Bridge Filter kernel patch for v2.2.21 creates a new built-in chain you can use to filter packets before the bridge. The Linux firewall and bridge functions work well but you can't filter exactly which packets are bridged. The main goal of this patch is to allow this capability.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | File Size: | 2051 | | Last Modified: | Aug 29 01:31:51 2002 |
| MD5 Checksum: | f65d13387491e469bab5a088860b3831 |
|
| /// File Name: |
linux-2.2.21-stealth.diff.gz |
Description:
|
The Stealth Kernel Patch for Linux v2.2.21 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Now works with kernel v2.2.21. | | File Size: | 5150 | | Last Modified: | Aug 27 01:52:28 2002 |
| MD5 Checksum: | eb8976ac8b175260cbfd20067c9cb11f |
|
| /// File Name: |
linux-2.2.22-brfw.diff.gz |
Description:
|
The Bridge Filter kernel patch for v2.2.22 creates a new built-in chain you can use to filter packets before the bridge. The Linux firewall and bridge functions work well but you can't filter exactly which packets are bridged. The main goal of this patch is to allow this capability.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Ported to Kernel v2.2.22. | | File Size: | 2049 | | Last Modified: | Sep 20 11:09:15 2002 |
| MD5 Checksum: | 7d7611d2c3f5213becc418a06dc5f047 |
|
| /// File Name: |
linux-2.2.22-ow1.tar.gz |
Description:
|
The Openwall Linux kernel patch is a collection of security "hardening" features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.
| | Author: | Solar Designer | | Homepage: | http://www.openwall.com/linux | | Changes: | Updated for Kernel v2.2.22. | | File Size: | 27415 | | Last Modified: | Sep 20 12:33:11 2002 |
| MD5 Checksum: | acb8ef1aa99d283e7a9a06fc7ab9a406 |
|
| /// File Name: |
linux-2.2.22-stealth.diff.gz |
Description:
|
The Stealth Kernel Patch for Linux v2.2.22 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Now works with kernel v2.2.22. | | File Size: | 5137 | | Last Modified: | Sep 20 10:59:22 2002 |
| MD5 Checksum: | e9cd3bfd2fa4ba76ee8258e20d88b5b9 |
|
| /// File Name: |
linux-2.4.19-stealth.diff.gz |
Description:
|
The Stealth Kernel Patch for Linux v2.4.19 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Now works with kernel v2.4.19. | | File Size: | 2744 | | Last Modified: | Aug 29 00:46:35 2002 |
| MD5 Checksum: | 2f3eb50a0db3d6d35c13fa2c541b5c28 |
|
| /// File Name: |
linux.ip.parse.DoS.fix.txt |
Description:
|
Debian Security has released patches for Linux 2.2.x kernels for the Sun sparc architecture, which are susceptable to denial of service attacks due to a problem with parsing IP options.
| | File Size: | 2504 | | Last Modified: | Aug 16 20:05:19 1999 |
| MD5 Checksum: | 101ff084a0d489d8f361d24c138e88bb |
|
| /// File Name: |
linux223-tcp_input.c.patch |
Description:
|
Linux 2.2.3 patch that prevents Linux machines from freaking on FIN/NULL/XMAS scans. Simple option to log the packets included.
| | File Size: | 936 | | Last Modified: | Aug 16 20:05:19 1999 |
| MD5 Checksum: | db6bc55417a6752875a995e901957287 |
|
| /// File Name: |
longdate.fix.txt |
Description:
|
Instructions for Sendmail and Postfix to stop messages with long Date: headers.
| | Author: | Koos van den Hout and Mark Lastdrager. | | File Size: | 2331 | | Last Modified: | Jul 24 23:02:56 2000 |
| MD5 Checksum: | 7ed0c8340998a6071f42c7cd6a464fde |
|
| /// File Name: |
MSEC.single-user.patch.pkg.sit |
Description:
|
The MSEC single-user patch disables the ability to boot into single-user mode under OS X. If this patch is not applied then anyone with physical access to the Mac OS X machine can gain root access easily by holding down the command and s keys at startup. The patch disables this by installing a modified version of /sbin/mach_init. The patch does NOT backup the insecure version of /sbin/mach_init so if for some strange reason you want to revert to the insecure copy of mach_init you must restore that file from your own backups. If you have any questions check our website at http://www.msec.net or email support[at]msec.net.
| | Author: | Marukka Der Inhaber | | Homepage: | http://www.msec.net | | File Size: | 54251 | | Last Modified: | Apr 24 20:33:05 2001 |
| MD5 Checksum: | 0baf8d8626527794ad26e2e0ee0aa5ce |
|
| /// File Name: |
nmap-3.10ALPHA4_statistics-1.diff |
Description:
|
The Nmap 3.10ALFA Statistics Patch adds the -c switch which guesses how much longer the scan will take, shows how many ports have been tested, resent, and the ports per second rate. Useful for scanning firewalled hosts.
| | Author: | Ian Vitek | | Homepage: | http://www.ixsecurity.com | | File Size: | 5002 | | Last Modified: | Dec 3 00:56:52 2002 |
| MD5 Checksum: | 8f5b74695fa36cfdeac778e8842541a2 |
|
| /// File Name: |
nmap-3.20_statistics-1.diff |
Description:
|
The Nmap 3.20 Statistics Patch adds the -c switch which guesses how much longer the scan will take, shows how many ports have been tested, resent, and the ports per second rate. Useful for scanning firewalled hosts.
| | Author: | Ian Vitek | | Homepage: | http://www.sekure.net/ssnig/ | | File Size: | 6323 | | Last Modified: | Apr 23 22:14:49 2003 |
| MD5 Checksum: | 8b2d99c9ce76001cd3dcd91ef4bed9b7 |
|
| /// File Name: |
nmap-freak-freebsd4.4-patch |
Description:
|
Nmap freak patch for FreeBSD 4.4 - Prevents OS fingerprinting, NULL scan, FIN scan, Xmas scan, Connect scan, and Stealth scan.
| | Author: | Jaguar | | File Size: | 3128 | | Last Modified: | May 5 01:19:57 2002 |
| MD5 Checksum: | 012fa6fd4cc98708557d98e50a725982 |
|
| /// File Name: |
nmap-freak-patch |
Description:
|
This is a kernel patch to prevent stealth, fin, and rst scans. Also slows down the tcp connect scan. Tested on debian potato running 2.4.16. Tested with nmap and queso - Changes OS fingerprint.
| | Author: | Jaguar | | File Size: | 3709 | | Last Modified: | Feb 19 00:55:31 2002 |
| MD5 Checksum: | 7664c535e3f8bccb107a2265b76d9b52 |
|
| /// File Name: |
nmap-runtimebadsum.patch |
Description:
|
Patch for Nmap 4.20RC1 (and some 4.20ALPHA versions) that adds a runtime option to toggle the sending of packets with bad TCP/UDP checksums.
| | Author: | Kris Katterjohn | | File Size: | 1620 | | Last Modified: | Nov 21 22:01:46 2006 |
| MD5 Checksum: | 46fd3fea42a6a93813bf3e39625bdcef |
|
| /// File Name: |
nmrcOS.patch.tar.gz |
Description:
|
Linux 2.0.36 kernel patch that includes Solar Designer's secure-linux patch, several patches from Daemon9, and modifications to prevent port scans from working. To be a part of the up-and-coming nmrcOS Linux distribution. (highly recommended by P.S.S.)
| | Author: | Nomad Mobile Research Centre. | | File Size: | 17290 | | Last Modified: | Aug 16 20:05:19 1999 |
| MD5 Checksum: | 6a003c916fc092e79934a66ac9b7a814 |
|
| /// File Name: |
openssh-2.5.2p2+SecurID_v1.patch.gz |
Description:
|
This patch integrates SecurID authentication services directly into the OpenSSH daemon, allowing users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
| | Homepage: | http://www.omniti.com/~jesus/projects | | Changes: | This release includes fixes for next token handling code. The patch is for OpenSSH 2.5.2p2. | | File Size: | 26678 | | Last Modified: | Apr 24 21:22:14 2001 |
| MD5 Checksum: | 82009d8962cffb0484ca6ba6fb992261 |
|
| /// File Name: |
openssh-2.9p2.patch |
Description:
|
Openssh-2.9p2 patch which logs the username, remote host, and password when outbound connections are made.
| | File Size: | 3608 | | Last Modified: | Dec 8 22:42:10 2001 |
| MD5 Checksum: | 506df08051bf9a4a4e83c6b57873c242 |
|
| /// File Name: |
openssh-3.6.1p2+SecurID_v1.patch |
Description:
|
This patch integrates SecurID authentication services directly into the OpenSSH daemon, allowing users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
| | Homepage: | http://www.omniti.com/~jesus/projects | | Changes: | Supports both new (5.X+) and old (<=3D 4.X) securid client API libraries. | | File Size: | 44857 | | Last Modified: | Jun 11 02:57:46 2003 |
| MD5 Checksum: | 5c500a839f95247ea6e377046a9ea913 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
