B.5. DaemonsWhen you are building your firewall, you may wish to replace your standard daemons with the daemons described in the following sections.B.5.1. wuarchive ftpdftp://ftp.wustl.edu/packages/wuarchive-ftpd/The wuarchive FTP daemon offers many features and security enhancements, such as per-directory message files shown to any user who enters the directory, limits on number of simultaneous users, and improved logging and access control. These enhancements are specifically designed to support anonymous FTP.
B.5.2. GateDhttp://www.gated.merit.eduGateD is a routing daemon that provides multi-protocol support and filters routes based on their source. GateD used to be freely available but is now a commercial product.
B.5.3. Zebrahttp://www.zebra.orgZebra is an open source routing daemon that provides multi-protocol support and filters routes based on their source.
B.5.4. Postfixhttp://www.postfix.orgPostfix, by Wietse Venema, is a security-oriented Unix mailer daemon; it is discussed in Chapter 16, "Electronic Mail and News".
B.5.5. qmailhttp://www.qmail.orgqmail, by Dan Bernstein, is a security-oriented Unix mailer daemon; it is discussed in Chapter 16, "Electronic Mail and News".
B.5.6. smailftp://ftp.planix.com/pub/Smail/smail is also a replacement Unix mailer daemon, discussed in Chapter 16, "Electronic Mail and News".
B.5.7. portmapftp://coast.cs.purdue.edu/pub/tools/unix/portmap.sharportmap, from Wietse Venema, is a portmapper replacement that offers access control in the style of the TCP Wrapper program, described in Section B.6, "Utilities", later in this appendix.
B.5.8. Andrew File System (AFS)http://www.transarc.comAFS is a network filesystem that is more suitable for use across wide area networks such as the Internet than traditional LAN-oriented network filesystem protocols such as NFS. From the AFS document: AFS is a distributed filesystem that enables cooperating hosts (clients and servers) to efficiently share filesystem resources across both local area and wide area networks. AFS is marketed, maintained, and extended by Transarc Corporation. AFS is based on a distributed file system originally developed at the Information Technology Center at Carnegie-Mellon University.
B.5.9. rsynchttp://rsync.samba.org/rsyncrsync is a synchronization protocol that uses checksums to determine differences (instead of relying on modification dates) and does partial file transfers (transferring only the differences instead of the entire files). rsync was developed by Andrew Tridgell and Paul ackerras. The rsync daemon, rsyncd, provides an efficient and secure way to make files available to remote sites.
B.5.10. Sambahttp://www.samba.orgSamba is an open source package for Unix and related systems that provides SMB/CIFS service, including file and printer sharing. It allows a Unix system to act as a server for PCs. In addition, the Samba source is an effective form of documentation of how SMB/CIFS works and provides a number of tools that may help you in debugging icrosoft networks.
B.5.11. sshhttp://www.ssh.orgssh is a secure remote login program, available for both Unix and Windows NT. It is discussed in Chapter 18, "Remote Access to Hosts".
B.5.12. BO2Khttp://www.microsoft.com/backofficeserverBO2K is a remote control program for Microsoft Windows systems. It is discussed in Chapter 18, "Remote Access to Hosts".
B.5.13. mIRChttp://www.mirc.com/mIRC is an IRC client. It is discussed in Chapter 19, "Real-Time Conferencing Services".
|
|