CLASnet: Software Security Packages

McAfee Viruscan

McAfee is a virus-scanning software licensed for UF use by faculty, staff, and students. You can download the current version from the UF SODA Shoppe.

Ad-aware

Ad-aware detects and removes non-virus mal-ware. You can download the current version from their website: http://www.lavasoftusa.com/support/download/

Spybot Search and Destroy

Spybot detects and removes non-virus spy-ware. You can download the current version from their website: http://www.safer-networking.org/index.php?page=mirrors

Secure-Shell (SSH)

SSH is a tool which encrypts inter-machine communication. The protocol allows most clients to act as a "tunnel" for other insecure protocols (ie, FTP, POP3, etc).

OpenSSH Unix Server & Client: www.openssh.com
DataFellows: Wintel & Macintosh F-secure Clients: www.datafellows.com/products/fsssh/
VanDyke: Wintel SecureCRT Client: www.vandyke.com
UF Networked Writing Environment's TeraTerm+SSH instruction page: http://web.nwe.ufl.edu/writing/help/remote/ssh/teraterm/

There are freeware Mac clients

http://sourceforge.net/projects/macssh/
http://www.lysator.liu.se/~jonasw/freeware.html
graphical SCP/SFTP/SSH tunnel for MacOS X http://rsug.itd.umich.edu/software/fugu/

There are also freeware Wintel clients

Berkley Internet Name Daemon (BIND) v8

BIND is the de-facto DNS server used on the Internet today. The current versions fix a number of security holes, has better logging and transaction support, and adds dynamic DNS.
http://www.isc.org/bind.html

The Physics Department has a page on how to install and configure BIND.

Crack

Crack is a password "cracking" tool, built around an alternate crypt(3) function. This alternate function is magnitudes faster than the normal system function, which makes it possible to "guess" passwords within a reasonable amount of time.
ftp://info.cert.org/pub/tools/crack/

RDist

RDist (Remote Dist) is a tool to "mirror" collections of files between hosts. The current version (v6) fixes many security-related problems.
http://www.magnicomp.com/rdist/.

Sendmail v8.9.x (and later)

Sendmail is the de-facto SMTP agent used between servers. Version 8.9 fixes many security-related problems and adds several anti-SPAM® measures.
http://www.sendmail.org

Tripwire

Tripwire is a tool to create and monitor a database of statistics on whatever files on your Unix system you desire. It can be used as part of an intrusion detection system. However, to be of much use, you must start with a known good (ie "pristine") operating system. http://www.tripwiresecurity.com/ ftp://coast.cs.purdue.edu/pub/tools/unix/ids/tripwire/ (older freeware version)

XNTP

XNTP (eXtended Network Time Protocol) allows you to syncronise the time between multiple computers to within millisecond accuracy. This is important to track down the exact time a cracker attempted to attack your system(s). Thus, it can be considered part of your instrusion detection system. ftp://ftp.udel.edu

The Physics Department has a page on how to install and configure xntpd.

Last updated: Aug 25, 2004 (02:55:53 PM EDT)
URL: http://www.clasnet.ufl.edu/security/software.shtml