January 20, 2011, 8:31 AM — Data security is always top of mind for CIOs and CSOs, and there is no shortage of challenges when it comes to picking the right tool for the job.
With network and software vulnerabilities growing at a perpetual rate, good security software can help defend against many of the large-scale threats that occur locally and from all over the Internet.
In this edition of 5 open source things to watch, we take a look at security products that will guard against threats without robbing your kitty.
PacketFence is an open source Network Access Control (NAC) system for wired and wireless networks developed by Canadian company Inverse.
PacketFence integrates with the Snort intrusion detection system and the Nessus vulnerability scanner and is managed out-of-band.
Features include VoIP support, 802.1X, isolation of rogue devices and a Web-based management interface.
URL: http://www.packetfence.org/:http://www.packetfence.org/Licence: GPL
The SmoothWall Open Source Project started in 2000 with SmoothWall Express, a firewall shipped with its own hardened GNU/Linux operating system and Web management interface.
SmoothWall can be downloaded as an iso image for Intel and AMD processors and, once installed, can be updated online.
The product integrates a standard set of firewall features and does QoS, traffic stats, Web proxying and real-time graphs.
The company behind the open source product, SmoothWall, offers commercial support for the product and sells appliances.
URL: http://www.smoothwall.org/Licence: GPL
ModSecurity is an open source Web application firewall (WAF) project for the Apache HTTP server developed by US company Trustwave.
ModSecrity has its own programming language to protect against Web application attacks.
Installed as an Apache module, ModSecurity features HTTP traffic monitoring, logging and real-time analysis, attack prevention and a rules engine.
Since it is run in Apache, ModSecurity should be as scalable as the existing Web server architecture.
ModSecurity now claims more than 10,000 deployments world-wide.
URL: http://www.modsecurity.org/Licence: GPL
Untangle is another multi-purpose gateway security project distributed as a Linux image. It will run on dedicated hardware or virtual machines.
The Untangle distribution supports a mix of free and paid security applications. The free apps include a Web Filter, anti-virus, spam prevention, advertising and phishing blocking, anti-spyware, firewall and tools for reporting and VPNs.