Component security
Backports of fail2ban and rkhunterPackages in this component
- fail2ban
Version 0.6.1-8 (changes) - fail2ban (0.6.1-8) unstable; urgency=low
- Builded for Debian Sarge using work from Yaroslav Halchenko
Source (.dsc) fail2ban_0.6.1-8.dsc Source (orig.tar.gz) fail2ban_0.6.1.orig.tar.gz Source (.diff.gz) fail2ban_0.6.1-8.diff.gz - fail2ban
Description bans IPs that cause multiple authentication errors (More...) Monitors (in daemon mode) or just scans log files (e.g. /var/log/auth.log, /var/log/apache/access.log) and temporarily bans failure-prone addresses by updating existing firewall rules. Currently, by default, supports ssh/apache but configuration can be easily extended for scanning the other ASCII log files. Firewall rules are given in the config file, thus it can be adopted to be used with a variety of firewalls (e.g. iptables, ipfwadm).
Homepage: http://www.sourceforge.net/projects/fail2ban
Package fail2ban_0.6.1-8_all.deb
- rkhunter
Version 1.2.8-5 (changes) - rkhunter (1.2.8-5) unstable; urgency=low
- Builded for Debian Sarge using work of Julien Valroff
Source (.dsc) rkhunter_1.2.8-5.dsc Source (orig.tar.gz) rkhunter_1.2.8.orig.tar.gz Source (.diff.gz) rkhunter_1.2.8-5.diff.gz - rkhunter
Description rootkit, backdoor, sniffer and exploit scanner (More...) Rootkit Hunter scans your system for known and unknown rootkits, backdoors, sniffers and exploits.
Some of the tests it does: - MD5 hash compare - Look for default files used by rootkits - Wrong file permissions for binaries - Look for suspected strings in LKM and KLD modules - Look for hidden files - Optional scan within plaintext and binary files
Please note that rkhunter does *not* guarantee your system has not been compromised! You should also run additional tests, e.g. using chkrootkit and other measures.
Package rkhunter_1.2.8-5_all.deb