Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: samhain 2.5.1 (Default branch)
Special Forums News, Links, Events and Announcements Software Releases - RSS News samhain 2.5.1 (Default branch) Post 302269444 by Linux Bot on Wednesday 17th of December 2008 06:20:03 PM
Old 12-17-2008
samhain 2.5.1 (Default branch)
samhain is a daemon that can check file integrity, search the file tree for SUID files, and detect kernel module rootkits (Linux only). It can be used either standalone or as a client/server system for centralized monitoring, with strong (192-bit AES) encryption for client/server connections and the option to store databases and configuration files on the server. For tamper resistance, it supports signed database/configuration files and signed reports/audit logs. It has been tested on Linux, FreeBSD, Solaris, AIX, HP-UX, and Unixware. License: GNU General Public License (GPL) Changes:
The syntax for conditionals in the configuration file has been enhanced. An option has been added to drop checksummed files from the file cache. The server can now request on-demand scans from the clients. Some compile issues and a problem with reloading the configuration in stealth mode have been fixed. Image

Image

More...
 

LEARN ABOUT CENTOS

fail2ban

FAIL2BAN(1)						      General Commands Manual						       FAIL2BAN(1)

NAME

       fail2ban - a set of server and client programs to limit brute force authentication attempts.

DESCRIPTION

       Fail2Ban consists of a client, server and configuration files to limit brute force authentication attempts.

       The  server  program  fail2ban-server is responsible for monitoring log files and issuing ban/unban commands.  It gets configured through a
       simple protocol by fail2ban-client, which can also read configuration files and issue corresponding configuration commands to the server.

       For details on the configuration of fail2ban see the jail.conf(5) manual page.  A jail (as specified  in  jail.conf)  couples  filters  and
       actions definitions for any given list of files to get monitored.

       For details on the command-line options of fail2ban-server see the fail2ban-server(1) manual page.

       For details on the command-line options and commands for configuring the server via fail2ban-client see the fail2ban-client(1) manual page.

       For  testing  regular  expressions  specified  in  a filter using the fail2ban-regex program may be of use and its manual page is fail2ban-
       regex(1).

LIMITATION

       Fail2Ban is able to reduce the rate of incorrect authentications attempts however it cannot eliminate the  risk	that  weak  authentication
       presents.  Configure services to use only two factor or public/private authentication mechanisms if you really want to protect services.

       A  local  user  is able to inject messages into syslog and using a Fail2Ban jail that reads from syslog, they can effectively trigger a DoS
       attack against any IP. Know this risk and configure Fail2Ban/grant shell access accordingly.

FILES

       /etc/fail2ban/*

AUTHOR

       Manual page written by Daniel Black and Yaroslav Halchenko

REPORTING BUGS

       Report bugs to https://github.com/fail2ban/fail2ban/issues

COPYRIGHT

       Copyright (C) 2013
       Copyright of modifications held by their respective authors.  Licensed under the GNU General Public License v2 (GPL).

SEE ALSO

       fail2ban-server(1) fail2ban-client(1) fail2ban-regex(1) jail.conf(5)

Fail2Ban							    March 2013							       FAIL2BAN(1)
All times are GMT -4. The time now is 02:39 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy