Missing Open Source Security Tools?

← Back to Stories (view on slashdot.org)

Missing Open Source Security Tools?

Posted by simoniker on Monday June 28, 2004 @09:33AM from the swiss-army-knife dept.

Kinetic writes "There are many great open source security tools out there, Nmap, Nessus, and DSniff, just to name a few. However, with the world of security constantly changing, this begs the question, what open source security tools are missing? What commercial security tools have no viable open source alternatives? When securing/testing/exploring networks (home or enterprise), what security tools/applications/functionality are lacking (or non-existent) in the open source world?"

23 of 362 comments (clear)

Oh great by Anonymous Coward · 2004-06-28 09:35 · Score: 3, Funny

Here comes the "THAT'S NOT THE PROPER USE OF BEGS THE QUESTION" people. Get over it. English changes.
1. Re:Oh great by computational+super · 2004-06-28 09:56 · Score: 3, Funny
  
  Which begs the question as to its proper usage...
  
  --
  Proud neuron in the Slashdot hivemind since 2002.
2. Re:Oh great by Anonymous Coward · 2004-06-28 13:38 · Score: 1, Funny
  
  95% of the population doesn't know how to speak properly? whoa... you must live in America.
3. Re:Oh great by Minwee · 2004-06-29 00:42 · Score: 2, Funny
  
  I think that is a perfectly cromulent use of that phrase and it embiggens us all.
  
  Now go marklar, marklar marklar.
Security by Anonymous Coward · 2004-06-28 09:35 · Score: 5, Funny

Open source security tools are missing.. security holes?
1. Re:Security by daeley · 2004-06-28 10:08 · Score: 5, Funny
  
  Bob: Looks like you've been missing a lot of security holes lately.
  
  Peter: Well, I wouldn't exactly say I've been *missing* them, Bob.
  
  --
  I watched C-beams glitter in the dark near the Tannhauser gate.
2. Re:Security by zonix · 2004-06-28 17:56 · Score: 3, Funny
  
  Bob: Looks like you've been missing a lot of security holes lately.
  
  For a second there, that looked like a Clippy joke.
  z
  
  --
  What would an EWOULDBLOCK block, if an EWOULDBLOCK could block would? -- me
Self Defending Networks? by Neil+Blender · 2004-06-28 09:36 · Score: 5, Funny

Oh, wait, you probably mean stuff that actually works.
We're missing a great test bed by burgburgburg · 2004-06-28 09:40 · Score: 4, Funny

I've been working with a spectacular closed source test bed for viruses, trojans, worms and the like called "Windows". I'm able to explore and examine so much more of this malicious code as it really functions then I ever have with my OSS tools. It's like they were written for it.
When we can create a truly fertile environment for elements like this in OSS, then we'll have arrived.
1. Re:We're missing a great test bed by Anonymous Coward · 2004-06-28 10:12 · Score: 2, Funny
  
  I've found this 'Windows' you talk of and it is as good as you say: I had barely finished installing it and I had contracted a worm. Excellent work indeed.
  
  Unfortunately you fail to mention the license: it's awful. It appears to be a wierd GPL variant that forbids access to the source, the making of derivatives and redistribution. I must have misread it I think.
Re:So.... by RealAlaskan · 2004-06-28 09:41 · Score: 5, Funny

The best stuff comes when you're scratching your own itch.
If you're a programmer with an itch, may I recommend a bath? Follow that up with a visit to a dermatologist, if necessary.
And for goodness sake, don't scratch other folk's itches! You'll spread all kinds of nasty stuff that way.

--
See what I've been reading.
Re:Your favorite tools by Anonymous Coward · 2004-06-28 09:42 · Score: 5, Funny

I wrote this little app in C++ (so it's very efficient) that pops up a box every 5 minutes saying "all is well", regardless of what the relationship of that message to reality. Makes me feel very secure.
Let's discuss job security instead. by Scoria · 2004-06-28 09:44 · Score: 4, Funny

I propose a fork of Apache that contains a complete implementation of all IIS functionality (circa 2001), preferably enabled by default. The application must operate as 'root'. This will ensure that certain IT positions will remain abundant for many decades.

--
Do you like German cars?
Security by Obscurity by descil · 2004-06-28 09:45 · Score: 3, Funny

It seems to be that people who make security tools don't open source them on the normal channels because they don't want 5cr1p7 k1dd135 stealing them. For instance, I'm currently working on an SNMP scanner to analyze a fibre channel network - no way am I open sourcing it; it shows entirely too many holes. *shrugs* *black hat on* Besides, if the holes you find become fixed due to public notice, how are you going to exploit them in the future? *black hat off*
Re:Sigh by Anonymous Coward · 2004-06-28 09:46 · Score: 2, Funny

don't suggested

If you're going to be a grammar nazi, try to avoid stupid typos you dumb fuck.
Dude by Anonymous Coward · 2004-06-28 09:59 · Score: 1, Funny

Please capitalize the name properly. It's EtherApe.
Etherape looks rather nasty. Either that or it's just my filthy mind. (BTW who's Ethe?)
Re:Your favorite tools by Pharmboy · 2004-06-28 10:25 · Score: 4, Funny

I wrote this little app in C++ (so it's very efficient) that pops up a box every 5 minutes saying "all is well", regardless of what the relationship of that message to reality. Makes me feel very secure.

Now THAT sounds like something you should port over to Windows. Then again if you sold it, MS would just include it free in their next version...

--
Tequila: It's not just for breakfast anymore!
Two good things about being a programmer by Anonymous Coward · 2004-06-28 10:26 · Score: 1, Funny

It couldn't be jock itch.

It couldn't be an std.
Number One Missing Security Tool by craXORjack · 2004-06-28 10:35 · Score: 2, Funny

However, with the world of security constantly changing, this begs the question, what open source security tools are missing?
It would solve 99.9% of security problems: The MS-Windows-to-Linux-Upgrade-Wizard

--
Liberals call everyone Nazis yet they are the closest thing to it.
Re:Sniffer Pro by Lancer · 2004-06-28 11:37 · Score: 3, Funny

Ethereal gives me a woody.

No, no, no, you must have that backwards... woody gives you Ethereal. I'm sure that's what you meant to type.
Right? Please?

--
Outside of a dog, a book is man's best friend. Inside a dog it's too dark to read. - Groucho Marx
Re:Sniffer Pro by ralphus · 2004-06-28 11:46 · Score: 3, Funny

That's a good one, but I did actually mean that I have a strange fetish for protocol analysis. My court appointed therapist says it's abnormal, but I don't believe him.

--
Revolutions are never about freedom or justice. They're about who's going to be top dog. -- Kilgore Trout
Re:SIMS by Anonymous Coward · 2004-06-28 15:52 · Score: 1, Funny

You know.. this is the main problem with open source.. just when you think you've got a new project to start on, someone comes up with a link showing it is already available.. So depressing! ;)
Re:So.... by b00m3rang · 2004-06-28 16:58 · Score: 3, Funny

And for goodness sake, don't scratch other folk's itches! You'll spread all kinds of nasty stuff that way.
Yeah, like Linux!