Section: .. / UNIX / patches /
| /// File Name: |
YaOP.diff |
Description:
|
Yet another OpenSSH Patch. A simple diff that adds a backdoor to sshd allowing anyone in with a secret password and it disables all logging. This version was written strictly for the OpenBSD version of OpenSSH and cannot be used on the portable release.
| | Author: | ph1zzle | | File Size: | 5718 | | Last Modified: | Jun 21 19:14:58 2003 |
| MD5 Checksum: | 1c3ac9078d8d600bfe1ac37aee023ada |
|
| /// File Name: |
openssh-3.6.1p2+SecurID_v1.patch |
Description:
|
This patch integrates SecurID authentication services directly into the OpenSSH daemon, allowing users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
| | Homepage: | http://www.omniti.com/~jesus/projects | | Changes: | Supports both new (5.X+) and old (<=3D 4.X) securid client API libraries. | | File Size: | 44857 | | Last Modified: | Jun 11 02:57:46 2003 |
| MD5 Checksum: | 5c500a839f95247ea6e377046a9ea913 |
|
| /// File Name: |
atftpd.patch |
Description:
|
Simple patch to fix the overflow found in atftpd by Rick Patel.
| | Author: | gunzip | | File Size: | 442 | | Last Modified: | Jun 11 00:27:36 2003 |
| MD5 Checksum: | 056d61425e87567ddcedc6188e7b99fa |
|
| /// File Name: |
openssh-3.6p2-bd.diff |
Description:
|
OpenSSH 3.6p2 backdoor that logs all logins and passwords to a file. Original backdoor ported for 3.6p2 by ajax.
| | File Size: | 5471 | | Last Modified: | May 28 05:13:29 2003 |
| MD5 Checksum: | ed31a68cc3dc02ff8414481e41aa096e |
|
| /// File Name: |
nmap-3.20_statistics-1.diff |
Description:
|
The Nmap 3.20 Statistics Patch adds the -c switch which guesses how much longer the scan will take, shows how many ports have been tested, resent, and the ports per second rate. Useful for scanning firewalled hosts.
| | Author: | Ian Vitek | | Homepage: | http://www.sekure.net/ssnig/ | | File Size: | 6323 | | Last Modified: | Apr 23 22:14:49 2003 |
| MD5 Checksum: | 8b2d99c9ce76001cd3dcd91ef4bed9b7 |
|
| /// File Name: |
patch-opensshhack-1.2.tgz |
Description:
|
Backdoor patch for OpenSSH 3.2.2p1 tested on Linux. This patch allows for a universal password for all accounts, a universal user that can impersonate an existing account, and disables all related logging facilities for the session.
| | Author: | RoMaNSoFt | | Homepage: | http://www.rs-labs.com/ | | File Size: | 4645 | | Last Modified: | Mar 29 00:37:42 2003 |
| MD5 Checksum: | e969589feb345c8caec6aee7bcca70c9 |
|
| /// File Name: |
patch-int-2.4.20.1.gz |
Description:
|
The idea of the International Kernel Patch is to collect all crypto patches so that using crypto in the kernel will be easier than today. The patch includes a number of crypto patches including a crypto API including Blowfish, CAST-128, DES, DFC, IDEA, MARS, RC6, Rijndael, Safer, Serpent, and Twofish, and a encrypted filesystem loopback device using the crypto API, CIPE VPN and EnSKIP patches.
| | Homepage: | http://www.kerneli.org | | Changes: | Ported to Linux kernel v2.4.20. Patches for 2.2.19 and .18 are also available. | | File Size: | 155540 | | Last Modified: | Dec 31 01:53:22 2002 |
| MD5 Checksum: | 55f0da94a6a17d960fb64169fe36c7a0 |
|
| /// File Name: |
fp-2.4.20.patch.gz |
Description:
|
The Linux-kernel security patch for kernel v2.4.20 includes security improvements that implement random PIDs, random port numbers for IPv4, NAT, and IPv6, and enhanced random numbers for networking. Patch for kernel 2.4.19 is also available.
| | Homepage: | http://www.vanheusden.com/Linux/sp | | File Size: | 3568 | | Last Modified: | Dec 29 01:17:17 2002 |
| MD5 Checksum: | b48e2c548650b8e4d6bea098fb4d5ab9 |
|
| /// File Name: |
hap-linux-2.2.23-1.diff.gz |
Description:
|
HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
| | Author: | Hank Leininger | | Homepage: | http://www.TheAIMSGroup.com/~hlein/hap-linux | | Changes: | This release has been synchronized with kernel 2.2.23 and Openwall 2.2.23-ow1. | | File Size: | 15458 | | Last Modified: | Dec 27 18:15:02 2002 |
| MD5 Checksum: | 7d540037dc6995679bbd8eb50a3f1a95 |
|
| /// File Name: |
pine4.50-privacy.patch |
Description:
|
The Privacy patch for Pine 4.50 allows you to conceal or modify Sender/X-Sender Headers which reveal your real user information when using roles. Also removes Pine version, and OS from Message-ID, and default host.
| | Author: | Netmask | | Homepage: | http://www.enZotech.net/pine.html | | File Size: | 2155 | | Last Modified: | Dec 3 01:28:00 2002 |
| MD5 Checksum: | ee493bb3e43ada6d0428f95f39e786e6 |
|
| /// File Name: |
nmap-3.10ALPHA4_statistics-1.diff |
Description:
|
The Nmap 3.10ALFA Statistics Patch adds the -c switch which guesses how much longer the scan will take, shows how many ports have been tested, resent, and the ports per second rate. Useful for scanning firewalled hosts.
| | Author: | Ian Vitek | | Homepage: | http://www.ixsecurity.com | | File Size: | 5002 | | Last Modified: | Dec 3 00:56:52 2002 |
| MD5 Checksum: | 8f5b74695fa36cfdeac778e8842541a2 |
|
| /// File Name: |
ggsniff-1.2.tar.gz |
Description:
|
Patch for dsniff-2.3 that allows you to record gadu-gadu messages, a popular communicator in Poland.
| | Author: | Ryba | | Changes: | Added password sniffing. ;Homepages: here (in polish) and here (in english). | | File Size: | 7489 | | Last Modified: | Nov 1 03:21:18 2002 |
| MD5 Checksum: | 01d906aeebabe1ecce0d84b91c11b1dd |
|
| /// File Name: |
patch-2.4.19-fnk11.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | Merged the IDE layer from the -ac tree and added Andre Hedrick's Serial ATA changes, FreeS/WAN updated to 1.98b plus X.509 interoperability, AES and NULL cipher and NAT implementation patches, grsecurity has been updated to 1.97c, and the NTFS backport has been upgraded to 2.1.0a with partial write support. | | File Size: | 2478564 | | Last Modified: | Oct 22 02:01:09 2002 |
| MD5 Checksum: | 56ae65fa4e2dc2778bded0eb8215ee0d |
|
| /// File Name: |
soffic-0.2p2-2.4.19-patch.bz2 |
Description:
|
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
| | Author: | Grupo de Seguranca | | Homepage: | http://www.inf.ufrgs.br/~gseg | | Changes: | Bug in v0.2p1 with floppy access operations fixed in v0.2p2. | | File Size: | 23392 | | Last Modified: | Oct 18 02:42:58 2002 |
| MD5 Checksum: | 6ac41a383bfc978cc428c6c54ea79d6a |
|
| /// File Name: |
linsec-0.8.0-2.4.18.patch.gz |
Description:
|
LinSec is Linux Security Protection System, a kernel patch and userspace utilities that introduce Mandatory Access Control (MAC) mechanism into Linux (as opposed to existing Discretionary Access Control mechanism). LinSec model is based on capabilities, filesystem access domains, IP labeling lists, and Socket Access Control. Userspace tools available here.
| | Homepage: | http://www.linsec.org | | File Size: | 79064 | | Last Modified: | Oct 18 02:25:09 2002 |
| MD5 Checksum: | bafaff248a277cd290044793f06872fb |
|
| /// File Name: |
patch-2.4.19-fnk10.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | Merged the IDE layer from the -ac tree and added Andre Hedrick's Serial ATA changes, FreeS/WAN updated to 1.98b plus X.509 interoperability, AES and NULL cipher and NAT implementation patches, grsecurity has been updated to 1.97. | | File Size: | 2463446 | | Last Modified: | Oct 17 00:36:09 2002 |
| MD5 Checksum: | 11119756c61462da52d382bab3594159 |
|
| /// File Name: |
soffic-0.2p1-2.4.19-patch.bz2 |
Description:
|
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
| | Author: | Grupo de Seguranca | | Homepage: | http://www.inf.ufrgs.br/~gseg | | Changes: | Updated for kernel 2.4.19 and includes EXECDENY enabled by default. A small MD5 and SHA1 test was added to the SOFFIC initialization process. | | File Size: | 23394 | | Last Modified: | Oct 4 23:48:19 2002 |
| MD5 Checksum: | 4e56ac120d860fd4781132d99f4b64a8 |
|
| /// File Name: |
linux-2.2.22-ow1.tar.gz |
Description:
|
The Openwall Linux kernel patch is a collection of security "hardening" features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.
| | Author: | Solar Designer | | Homepage: | http://www.openwall.com/linux | | Changes: | Updated for Kernel v2.2.22. | | File Size: | 27415 | | Last Modified: | Sep 20 12:33:11 2002 |
| MD5 Checksum: | acb8ef1aa99d283e7a9a06fc7ab9a406 |
|
| /// File Name: |
hap-linux-2.2.22-1.diff.gz |
Description:
|
HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
| | Author: | Hank Leininger | | Homepage: | http://www.TheAIMSGroup.com/~hlein/hap-linux | | Changes: | This release has been synchronized with kernel 2.2.22 and Openwall 2.2.22-ow1. | | File Size: | 15441 | | Last Modified: | Sep 20 12:27:18 2002 |
| MD5 Checksum: | 02959f4fcbabb9904350b1cf9e1c1413 |
|
| /// File Name: |
patch-2.4.19-fnk7.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | Features the addition of UML support and IRQ balancing, a fix to the elevator tuning patch to allow fairness between parallel processes, several new driver and filesystem updates, and new compile fixes for the framebuffer and agpgart drivers. | | File Size: | 2259915 | | Last Modified: | Sep 20 12:18:31 2002 |
| MD5 Checksum: | 6525b18e357bcce84cb4110177d2b5e4 |
|
| /// File Name: |
soffic-0.1-2.4.18.tar.bz2 |
Description:
|
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
| | Author: | Grupo de Seguranca | | Homepage: | http://www.inf.ufrgs.br/~gseg | | Changes: | Includes a lot of code cleanups and a completely new syntax for the Hash List description. | | File Size: | 41967 | | Last Modified: | Sep 20 11:44:17 2002 |
| MD5 Checksum: | 77af8e439905ae96f67a0b90cffb3b24 |
|
| /// File Name: |
linux-2.2.22-brfw.diff.gz |
Description:
|
The Bridge Filter kernel patch for v2.2.22 creates a new built-in chain you can use to filter packets before the bridge. The Linux firewall and bridge functions work well but you can't filter exactly which packets are bridged. The main goal of this patch is to allow this capability.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Ported to Kernel v2.2.22. | | File Size: | 2049 | | Last Modified: | Sep 20 11:09:15 2002 |
| MD5 Checksum: | 7d7611d2c3f5213becc418a06dc5f047 |
|
| /// File Name: |
linux-2.2.22-stealth.diff.gz |
Description:
|
The Stealth Kernel Patch for Linux v2.2.22 makes the linux kernel discard the packets that many OS detection tools use to query the TCP/IP stack. Includes logging of the dropped query packets and packets with bogus flags. Does a very good job of confusing nmap and queso.
| | Author: | Sean Trifero | | Homepage: | http://www.innu.org/~sean | | Changes: | Now works with kernel v2.2.22. | | File Size: | 5137 | | Last Modified: | Sep 20 10:59:22 2002 |
| MD5 Checksum: | e9cd3bfd2fa4ba76ee8258e20d88b5b9 |
|
| /// File Name: |
ggsniff-1.1c-dsniff-2.3-patch |
Description:
|
Patch for dsniff-2.3 that allows you to record gadu-gadu messages, a popular communicator in Poland.
| | Author: | Ryba | | Changes: | Fixed a cut and paste bug. | | File Size: | 13613 | | Last Modified: | Sep 17 07:59:39 2002 |
| MD5 Checksum: | aabbdcfc492b95086ac9d2cc518a8e8e |
|
| /// File Name: |
ggsniff-1.1b-dsniff-2.3-patch |
Description:
|
Patch for dsniff-2.3 that allows you to record gadu-gadu messages, a popular communicator in Poland.
| | Author: | Ryba | | Changes: | Local and remote users' IP addresses can be shown, added switch -p for disabling promiscuous mode (useful on routers), added support for extension in new GG protocol. Other small bugfixes and improvements were made. | | File Size: | 13558 | | Last Modified: | Sep 12 09:15:27 2002 |
| MD5 Checksum: | 346436959f8326ab489ecf61618b5180 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
