From owner-freebsd-security  Sun Jun 30 18: 0:16 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5664F37B400
	for <freebsd-security@FreeBSD.ORG>; Sun, 30 Jun 2002 18:00:13 -0700 (PDT)
Received: from mta2-rme.xtra.co.nz (mta2-rme.xtra.co.nz [210.86.15.130])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 243A043E09
	for <freebsd-security@FreeBSD.ORG>; Sun, 30 Jun 2002 18:00:07 -0700 (PDT)
	(envelope-from mike@netxsecure.net)
Received: from netxsecure.net ([210.55.243.47]) by mta2-rme.xtra.co.nz
          with ESMTP
          id <20020701010005.RLWM14139.mta2-rme.xtra.co.nz@netxsecure.net>
          for <freebsd-security@FreeBSD.ORG>;
          Mon, 1 Jul 2002 13:00:05 +1200
Message-ID: <3D1FAB41.396C0D23@netxsecure.net>
Date: Mon, 01 Jul 2002 13:07:13 +1200
From: "Michael A. Williams" <mike@netxsecure.net>
Reply-To: mike@netxsecure.net
X-Mailer: Mozilla 4.76 [en] (X11; U; FreeBSD 4.4-RELEASE i386)
X-Accept-Language: en
MIME-Version: 1.0
To: freebsd security <freebsd-security@FreeBSD.ORG>
Subject: New V2 Anti-Trojan kernel patches -Improved and extended for FreeBSD 4.6 
 Release
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hi,

Our latest version of Anti-Trojan software, V2 is now available as a
beta for FreeBSD 4.6 Release. 

V2 adds several new important Trojan Detection features with a big
reduction in the overall impact on a running kernel. 

1.Cryptographic hash checking and filtering all files loaded through the
memory map call mmap which covers:
-Shared libraries 
-Loadable kernel modules 

2.Activation very early in the boot cycle to provide warnings against
Trojan files waiting to execute at boot time before the secure level is
raised. 

3.Improved efficiency in terms of system rescues used, providing very
affordable increased security capabilities. 

4.Cryptographic hash checking and filtering the Execve call including
script files and an associated interpreter as the original reference
version did yet utilizing the more efficient techniques from the V2
code. 

The link is:
http://www.trojanproof.org/sigexec-fbsd4.6rV2-beta1.tgz

Regards, Mike.


-- 
Michael A. Williams
Security Software Engineering and InfoSec Manager
NetXSecure NZ Limited, http://www.nxs.co.nz
Ph: +64.3.318.2973 Fax: +64.3.318.2975 Mob: +64.21.995.914

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message