Projects @ Mindrot.org
Projects and quick hacks that (to some extent) live here include:
- Portable OpenSSH
- The port of OpenBSD's SSH protocol implementation to other POSIX operating systems (including most Unices and Windows via Cygwin).
- flowd
- A small, fast, secure and featureful NetFlow™ collector daemon. [moved to Google Code]
- pfflowd
- Cisco NetFlow™ datagram export for OpenBSD's PF packet filter.
- flashboot
- A set of makefiles and scripts for building small, customised OpenBSD distributions suitable for running off read-only boot media (especially flash). Based on OpenBSD's install floppy build system.
- Softflowd
- This is a software implementation of Cisco's NetFlow™ traffic accounting protocol. It collects and tracks traffic flows by listening on a promiscuous interface. Designed for minimal CPU load on busy networks. [moved to Google Code]
- Miscellaneous Code
-
Various other things developed or patched here, including Python modules:
- py-radix - Radix tree data structure for Python. [moved to Google Code]
- py-bcrypt and jBCrypt - OpenBSD-style Blowfish password hashing for Pythoni and Java. [moved to Google Code]
- py-editdist - Levenshtein edit distance calculation for Python. [moved to Google Code]
- passwdqc - Password complexity checking plugin for OpenBSD
- Some older junk too...
- Traffic-vis
- A suite of network traffic monitoring tools, which can write reports in a number of formats. Largely unmaintained.
- OpenBSD-related things
- Patches and config snippets related to OpenBSD.
- SSH Protocol, Tips and Tricks tutorial
- In 2002 I was invited to give a tutorial at the Australian Unix Users Group's Winter conference introducing the SSH protocols, the OpenSSH implementation and demonstrating some of the its fundamental and more advanced uses. The slides and the tutorial notes are distributed here in a number of formats which I occasionally update to keep abrest of continuing development.
Recent updates
Thu, 30 Sep 2004
softflowd-0.9.6 has just been released. This version adds support for the NetFlow v.9 export format and tracking of IPv6 flows.
posted at: 12:00 | permanent link
Fri, 24 Sep 2004
Flowd 0.6 has been released. This release adds support for NetFlow v.7 (used on some Catalyst switches) and NetFlow v.9. The NetFlow v.9 code includes support for IPv6 flows.
This release also adds a distribution of example tools that use the Perl or Python APIs. Right now, this consists of a tool to perform basic analysis of flow logs to look for worm-like traffic patterns and a utility to insert flow records into an SQL database.
There are no RPMs available just yet, but you can build them yourself from the tarball using rpmbuild -ta flowd-0.6.tar.gz.
posted at: 12:00 | permanent link
Thu, 16 Sep 2004
Released Flowd 0.5. This release fixes a stupid NetFlow v.5 parsing bug and improves the performance of the Perl and Python APIs. There are binary packages for Redhat 9 and Fedora Core 2 included in this release.
posted at: 12:00 | permanent link
Mon, 06 Sep 2004
Flowd 0.4.2 has just been released. This fixes a couple of minor bugs. This release officially upgrades flowd's status to "production ready", as I have been using it at a number of production sites for over a month and it has coped with everything I have thrown at it (including huge numbers of flows resulting from a worm outbreak.)
posted at: 12:00 | permanent link
pfflowd-0.6 has been released. This release adds export of flows via IPv6 transport, NetFlow v.5 (thanks to Ben Lovett) and a more lightweight main loop.
posted at: 12:00 | permanent link
Sat, 04 Sep 2004
flashboot-0.6 has been released. This release targets OpenBSD 3.6 (currently in beta). It adds a couple more binaries, including OpenNTPd. Because OpenBSD 3.6 is currently still in beta, the binary distribution is beta too, but the source distribution will work unchanged with the final 3.6 release.
posted at: 12:00 | permanent link