ZVON > RFC Repository > RFC 2196
Prev | Next | RFC index | RFC search Download as zip/tar.gz

7. Tools and Locations

This chapter provides a brief list of publicly available security technology which can be downloaded from the Internet. Many of the items described below will undoubtedly be surpassed or made obsolete before this document is published.

Some of the tools listed are applications such as end user programs (clients) and their supporting system infrastructure (servers). Others are tools that a general user will never see or need to use, but may be used by applications, or by administrators to troubleshoot security problems or to guard against intruders.

A sad fact is that there are very few security conscious applications currently available. Primarily, this is caused by the need for a security infrastructure which must first be put into place for most applications to operate securely. There is considerable effort currently taking place to build this infrastructure so that applications can take advantage of secure communications.

Most of the tools and applications described below can be found in one of the following archive sites:

  1. CERT Coordination Center: ftp://info.cert.org:/pub/tools
  2. DFN-CERT: ftp://ftp.cert.dfn.de/pub/tools/
  3. Computer Operations, Audit, and Security Tools (COAST): ftp://coast.cs.purdue.edu:/pub/tools

It is important to note that many sites, including CERT and COAST are mirrored throughout the Internet. Be careful to use a "well known" mirror site to retrieve software, and to use verification tools (md5 checksums, etc.) to validate that software. A clever cracker might advertise security software that has intentionally been designed to provide access to data or systems.

Tools

   COPS
   DES
   Drawbridge
   identd (not really a security tool)
   ISS
   Kerberos
   logdaemon
   lsof
   MD5
   PEM
   PGP
   rpcbind/portmapper replacement
   SATAN
   sfingerd
   S/KEY
   smrsh
   ssh
   swatch
   TCP-Wrapper
   tiger
   Tripwire*
   TROJAN.PL

ZVON > RFC Repository > RFC 2196
Prev | Next | RFC index | RFC search Download as zip/tar.gz