Stop Microsoft

Operating Systems => Linux and UNIX => Topic started by: Master of Reality on 20 September 2002, 00:38

Title: Systems Administrators Tool for Analyzing Networks
Post by: Master of Reality on 20 September 2002, 00:38

SAINT isnt free anymore and SATAN is out of date.
Has anyone had any success with any other tools like these? Has anyone used SARA, thats the only one i could find that was like SATAN, i would prefer a command-line utility though.

Title: Systems Administrators Tool for Analyzing Networks
Post by: Master of Reality on 20 September 2002, 00:42

fuck me.... my CD that came with my Linux Max Security book has SAINT on it. But is there any utility like SAINT that is commandline?

Title: Systems Administrators Tool for Analyzing Networks
Post by: voidmain on 20 September 2002, 01:13

Satan/Santa is really outdated. Nessus is a *very* good vulnerability checker if that is what you are looking for and it's the most popular. http://www.nessus.org/ (http://www.nessus.org/)

Title: Systems Administrators Tool for Analyzing Networks
Post by: Master of Reality on 20 September 2002, 01:21

i plan to isntall nessus too... (actually i am in the process of intslling it.)

I got a book called 'Linux Max Security' that kicks ass and comes with many security programs. it is published by Sams

Title: Systems Administrators Tool for Analyzing Networks
Post by: voidmain on 20 September 2002, 01:54

I like Nessus for checking for network and network service vulnerabilities. I like tripwire for detecting local intrusions and unauthorized modification of system files. I like snort/acid for network intrusion detection. I like Big Brother, Netsaint, and MRTG for network and server monitoring (administration).

Title: Systems Administrators Tool for Analyzing Networks
Post by: Master of Reality on 20 September 2002, 02:22

I got COLD for sniffing. I installed SAINT. Gonna install Nessus, Portsentry, COPS. Klaxxon will/is installed on telnet port.
I want to do some testing between two or three of my machines, so i might isntall some <r4(|<3r tools (not on my server... on my dev machine). Mendax perhaps and try some spoofing and stuff in my dev LAN.

[ September 19, 2002: Message edited by: The Master of Reality / Bob ]

Title: Systems Administrators Tool for Analyzing Networks
Post by: Master of Reality on 20 September 2002, 05:12

Has anyone used sftp or sslftp? Is it/they actually secure as ssh/ssl?

[ September 19, 2002: Message edited by: The Master of Reality / Bob ]

Title: Systems Administrators Tool for Analyzing Networks
Post by: voidmain on 20 September 2002, 05:43

quote:

---

Originally posted by The Master of Reality / Bob:
Has anyone used sftp or sslftp? Is it/they actually secure as ssh/ssl?

[ September 19, 2002: Message edited by: The Master of Reality / Bob ]

---

sshd is actually the sftp server so yes, it is just as secure as ssh as it IS ssh. However, I haven't figured out a reason to use sftp when I have scp....

Title: Systems Administrators Tool for Analyzing Networks
Post by: mobrien_12 on 21 September 2002, 10:00

You can still get the SAINT engine for free.  

ftp.saintcorporation.com

Note that this ftp server will NOT allow passive connections... so mozilla and gftp do not work.

It will scan and detect and list possible vulnerabilities but will not give you detailed information about them or how to fix them.  That's ok, I can look up the vulnerabilities already (most of them are false alarms, things that I patched already etc.).

[ September 21, 2002: Message edited by: M. O'Brien ]