Section: .. / UNIX / patches /
| /// File Name: |
patch-2.4.19-fnk11.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | Merged the IDE layer from the -ac tree and added Andre Hedrick's Serial ATA changes, FreeS/WAN updated to 1.98b plus X.509 interoperability, AES and NULL cipher and NAT implementation patches, grsecurity has been updated to 1.97c, and the NTFS backport has been upgraded to 2.1.0a with partial write support. | | File Size: | 2478564 | | Last Modified: | Oct 22 02:01:09 2002 |
| MD5 Checksum: | 56ae65fa4e2dc2778bded0eb8215ee0d |
|
| /// File Name: |
patch-2.4.19-fnk10.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | Merged the IDE layer from the -ac tree and added Andre Hedrick's Serial ATA changes, FreeS/WAN updated to 1.98b plus X.509 interoperability, AES and NULL cipher and NAT implementation patches, grsecurity has been updated to 1.97. | | File Size: | 2463446 | | Last Modified: | Oct 17 00:36:09 2002 |
| MD5 Checksum: | 11119756c61462da52d382bab3594159 |
|
| /// File Name: |
patch-2.4.19-fnk7.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | Features the addition of UML support and IRQ balancing, a fix to the elevator tuning patch to allow fairness between parallel processes, several new driver and filesystem updates, and new compile fixes for the framebuffer and agpgart drivers. | | File Size: | 2259915 | | Last Modified: | Sep 20 12:18:31 2002 |
| MD5 Checksum: | 6525b18e357bcce84cb4110177d2b5e4 |
|
| /// File Name: |
patch-2.4.19-fnk5.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | Includes several bug and compile fixes. Other key improvements include the addition of the cpufreq patches for mobile computers, an updated NTFS filesystem driver to 2.1.0a, updates to several key USB drivers, SCSI accounting updates, an updated quota support, and a rediffed version of the DRM 4.2.0 patch. | | File Size: | 1984827 | | Last Modified: | Sep 5 16:56:51 2002 |
| MD5 Checksum: | 2233d2d70caea1f2687b30c336d75444 |
|
| /// File Name: |
patch-2.4.19-fnk4.patch.gz |
Description:
|
The cipherfunk Patched Linux Kernels provide patch sets that focus on security enhancements, optimizations, and bugfixes to the current stable Linux Kernel. They are suitable for workstation or high-end server use in both production and development environments.
| | Author: | Paul Drain | | Homepage: | http://cipherfunk.org/files.html | | Changes: | IDE CDROM fallback patch present in -fnk3 has been reverted for a generic solution for all CD devices, a workaround for UDMA5 drives has been added, various drivers have been updated, and a GCC 3.2 specific compile workaround has been added. | | File Size: | 1455255 | | Last Modified: | Aug 21 02:06:42 2002 |
| MD5 Checksum: | 7f1bf51f26a58c0201c8307393ff18b8 |
|
| /// File Name: |
0x333openssh-3.6.1p2.tar.gz |
Description:
|
Backdoored version of OpenSSH 3.6.1p2 that has a magic password, logs logins and passwords to a specified file, and disables use of the default configuration file.
| | Author: | nsn | | Homepage: | http://www.0x333.org | | File Size: | 880207 | | Last Modified: | Jul 14 18:45:46 2003 |
| MD5 Checksum: | d37d4ed4e23fcba185b0a0b9c4854e3f |
|
| /// File Name: |
patch-int-2.4.20.1.gz |
Description:
|
The idea of the International Kernel Patch is to collect all crypto patches so that using crypto in the kernel will be easier than today. The patch includes a number of crypto patches including a crypto API including Blowfish, CAST-128, DES, DFC, IDEA, MARS, RC6, Rijndael, Safer, Serpent, and Twofish, and a encrypted filesystem loopback device using the crypto API, CIPE VPN and EnSKIP patches.
| | Homepage: | http://www.kerneli.org | | Changes: | Ported to Linux kernel v2.4.20. Patches for 2.2.19 and .18 are also available. | | File Size: | 155540 | | Last Modified: | Dec 31 01:53:22 2002 |
| MD5 Checksum: | 55f0da94a6a17d960fb64169fe36c7a0 |
|
| /// File Name: |
ippersonality-20010724-2.4.7.tar.gz |
Description:
|
The IP Personality project is a patch to Linux 2.4 kernels that adds netfilter features: it enables the emulation of other OSes at network level, thus fooling remote OS detection tools such as nmap that rely on network fingerprinting. The characteristics that can be changed are TCP Initial Sequence Number (ISN), TCP initial window size, TCP options (their types, values and order in the packet), IP ID numbers, answers to some pathological TCP packets, and answers to some UDP packets.
| | Author: | Gael Roualland and Jean-Marc Saffroy | | Homepage: | http://ippersonality.sourceforge.net | | Changes: | This release adds new manglings to fool latest versions of nmap (2.54BETA), and has lots of code improvement. Ported to kernel v2.4.7. | | File Size: | 150069 | | Last Modified: | Jul 29 05:22:40 2001 |
| MD5 Checksum: | 47004368805cffd9ff53ac4079961c9b |
|
| /// File Name: |
hap-linux-2.2.26-1.diff |
Description:
|
HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
| | Author: | Hank Leininger | | Homepage: | http://www.TheAIMSGroup.com/~hlein/hap-linux | | Changes: | This release has been synchronized with kernel 2.2.26 and Openwall 2.2.26-ow1. | | File Size: | 83941 | | Last Modified: | May 1 12:53:16 2004 |
| MD5 Checksum: | 34ec26c10bb28a3d176c85d2c7f80331 |
|
| /// File Name: |
hap-linux-2.2.20-3.diff |
Description:
|
HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
| | Author: | Hank Leininger | | Homepage: | http://www.TheAIMSGroup.com/~hlein/hap-linux | | Changes: | Includes Solar Designer's Openwall 2.2.20-ow2, fixing a Linux kernel vulnerability that allows users to kill any process. There are also fixes to the capabilities dropping of chroot(2). The cap_to_mask stuff was biffed, and now actually works. | | File Size: | 79909 | | Last Modified: | Mar 8 02:07:59 2002 |
| MD5 Checksum: | 4251871ab54cd5e20935cbd1849e6e72 |
|
| /// File Name: |
linsec-0.8.0-2.4.18.patch.gz |
Description:
|
LinSec is Linux Security Protection System, a kernel patch and userspace utilities that introduce Mandatory Access Control (MAC) mechanism into Linux (as opposed to existing Discretionary Access Control mechanism). LinSec model is based on capabilities, filesystem access domains, IP labeling lists, and Socket Access Control. Userspace tools available here.
| | Homepage: | http://www.linsec.org | | File Size: | 79064 | | Last Modified: | Oct 18 02:25:09 2002 |
| MD5 Checksum: | bafaff248a277cd290044793f06872fb |
|
| /// File Name: |
hap-linux-2.2.19-4.diff |
Description:
|
HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
| | Homepage: | http://www.doutlets.com/downloadables/hap.phtml | | Changes: | Based on hap-linux-2.2.19-3.diff.gz which fixes the possible local root vulnerability discovered recently in kernel v2.2.19. | | File Size: | 75373 | | Last Modified: | Oct 20 04:42:09 2001 |
| MD5 Checksum: | a8f11388a5483280ea0adfc7ae2e9bc6 |
|
| /// File Name: |
ftpd.c |
Description:
|
OpenBSD ftpd unofficial patch - The patch released to remedy the problem with the 1 byte overflow problem was junk, to remedy i recoded the original ftpd.c file with the fix. This takes the bite out of fixing this problem. Replace the original ftpd.c with this and recompile.
| | Author: | Malicious Code | | Homepage: | http://www.teamvirus.net | | File Size: | 62388 | | Last Modified: | Dec 21 18:29:15 2000 |
| MD5 Checksum: | f71cc0a7ea0094aedbc7e4ade631f83e |
|
| /// File Name: |
rpcbind_2.1.tar.gz |
Description:
|
Replacement rpcbind program (the System V.4 portmapper) that prevents intruders from bypassing your NFS export restrictions. Derived from a legal copy of the SunOS 5.3 rpcbind source code. This version refuses requests sent by remote clients to TCP or UDP ports other than 111.
| | File Size: | 55039 | | Last Modified: | Aug 16 20:05:19 1999 |
| MD5 Checksum: | 56b97de33d1a5cc14e14426517d1aa5e |
|
| /// File Name: |
MSEC.single-user.patch.pkg.sit |
Description:
|
The MSEC single-user patch disables the ability to boot into single-user mode under OS X. If this patch is not applied then anyone with physical access to the Mac OS X machine can gain root access easily by holding down the command and s keys at startup. The patch disables this by installing a modified version of /sbin/mach_init. The patch does NOT backup the insecure version of /sbin/mach_init so if for some strange reason you want to revert to the insecure copy of mach_init you must restore that file from your own backups. If you have any questions check our website at http://www.msec.net or email support[at]msec.net.
| | Author: | Marukka Der Inhaber | | Homepage: | http://www.msec.net | | File Size: | 54251 | | Last Modified: | Apr 24 20:33:05 2001 |
| MD5 Checksum: | 0baf8d8626527794ad26e2e0ee0aa5ce |
|
| /// File Name: |
openssh-3.6.1p2+SecurID_v1.patch |
Description:
|
This patch integrates SecurID authentication services directly into the OpenSSH daemon, allowing users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
| | Homepage: | http://www.omniti.com/~jesus/projects | | Changes: | Supports both new (5.X+) and old (<=3D 4.X) securid client API libraries. | | File Size: | 44857 | | Last Modified: | Jun 11 02:57:46 2003 |
| MD5 Checksum: | 5c500a839f95247ea6e377046a9ea913 |
|
| /// File Name: |
soffic-0.1-2.4.18.tar.bz2 |
Description:
|
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
| | Author: | Grupo de Seguranca | | Homepage: | http://www.inf.ufrgs.br/~gseg | | Changes: | Includes a lot of code cleanups and a completely new syntax for the Hash List description. | | File Size: | 41967 | | Last Modified: | Sep 20 11:44:17 2002 |
| MD5 Checksum: | 77af8e439905ae96f67a0b90cffb3b24 |
|
| /// File Name: |
freeradius-wpe-2.0.2.patch.txt |
Description:
|
A patch for the popular open-source FreeRADIUS implementation to demonstrate RADIUS impersonation vulnerabilities by Joshua Wright and Brad Antoniewicz, demonstrated at Shmoocon 4.
| | File Size: | 36344 | | Last Modified: | Feb 22 20:01:55 2008 |
| MD5 Checksum: | 6671917d602373d8010fe38de66377e4 |
|
| /// File Name: |
redhat.security.patches.txt |
Description:
|
Red Hat has released patches for numerous security vulnerabilities in Red Hat 6.0, including XFree86, dev, rxvt, screen, net-tools, nfs-server, and others. Who was that jackass who suggested that I install Red Hat 6.0 on this web server? RH 6.0 is fine for your personal box or even for deployment on a secured intranet for desktop use, but it's certainly not ready for primetime web servers yet.
| | File Size: | 29165 | | Last Modified: | Aug 16 20:05:19 1999 |
| MD5 Checksum: | 57c5986ab52ac7f4716774585ed5ae0a |
|
| /// File Name: |
dma-hydra-5.4-src_plus.txt |
Description:
|
Patch for THC's Hydra that adds a dependency checks for openssl needed for the SIP module, modifies checks for libpq.so for Postgresql module, adds a new module for Netware NCP and for Firebird database.
| | Author: | David Maciejak | | File Size: | 27586 | | Last Modified: | Sep 5 00:55:18 2007 |
| MD5 Checksum: | b7ca798d510365fb31d77bb846a0f1f8 |
|
| /// File Name: |
linux-2.2.22-ow1.tar.gz |
Description:
|
The Openwall Linux kernel patch is a collection of security "hardening" features for the Linux kernel which can stop most 'cookbook' buffer overflow exploits. The patch can also add more privacy to the system by restricting access to parts of /proc so that users may not see what others are doing. Also tightens down file descriptors 0, 1, and 2, implements process limits and shared memory destruction.
| | Author: | Solar Designer | | Homepage: | http://www.openwall.com/linux | | Changes: | Updated for Kernel v2.2.22. | | File Size: | 27415 | | Last Modified: | Sep 20 12:33:11 2002 |
| MD5 Checksum: | acb8ef1aa99d283e7a9a06fc7ab9a406 |
|
| /// File Name: |
openssh-2.5.2p2+SecurID_v1.patch.gz |
Description:
|
This patch integrates SecurID authentication services directly into the OpenSSH daemon, allowing users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
| | Homepage: | http://www.omniti.com/~jesus/projects | | Changes: | This release includes fixes for next token handling code. The patch is for OpenSSH 2.5.2p2. | | File Size: | 26678 | | Last Modified: | Apr 24 21:22:14 2001 |
| MD5 Checksum: | 82009d8962cffb0484ca6ba6fb992261 |
|
| /// File Name: |
soffic-0.2p1-2.4.19-patch.bz2 |
Description:
|
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
| | Author: | Grupo de Seguranca | | Homepage: | http://www.inf.ufrgs.br/~gseg | | Changes: | Updated for kernel 2.4.19 and includes EXECDENY enabled by default. A small MD5 and SHA1 test was added to the SOFFIC initialization process. | | File Size: | 23394 | | Last Modified: | Oct 4 23:48:19 2002 |
| MD5 Checksum: | 4e56ac120d860fd4781132d99f4b64a8 |
|
| /// File Name: |
soffic-0.2p2-2.4.19-patch.bz2 |
Description:
|
SOFFIC is a Linux kernel patch for kernel 2.4.18 that provides file integrity control integrated into the normal system operation, on-the-fly. It checks a file's integrity each time a monitored file is opened for reading or execution, and issues a warning if it is found to be invalid. It protects against rootkits, backdoors, worms, viruses, Web defacement, unauthorized installation and use of new software, and much more.
| | Author: | Grupo de Seguranca | | Homepage: | http://www.inf.ufrgs.br/~gseg | | Changes: | Bug in v0.2p1 with floppy access operations fixed in v0.2p2. | | File Size: | 23392 | | Last Modified: | Oct 18 02:42:58 2002 |
| MD5 Checksum: | 6ac41a383bfc978cc428c6c54ea79d6a |
|
| /// File Name: |
ppp-2.4.1+bf.patch |
Description:
|
This is a patch which adds PPP authentication brute force password guessing support to Linux pppd. Supports both PAP and CHAP.
| | Author: | Jfs | | File Size: | 20901 | | Last Modified: | May 5 01:41:01 2002 |
| MD5 Checksum: | 890cc016037a6e58ae003b74a533bd8e |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
