Security Basics mailing list archives

Re: software security auditing in Linux-based systems

From: Jon Kibler <Jon.Kibler () aset com>
Date: Thu, 03 Jul 2008 14:52:46 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Chad Perrin wrote:

After some cursory searching, and having used a few distributions for a
few years, I haven't found any software vulnerability auditing software
for any Linux distribution equivalent to FreeBSD's portaudit or NetBSD's
audit-packages.


I don't know a lot about the packages you have mentioned for BSD, but
for Linux there is OVAL, Sussen and Bastille for starters.

Hope this is what you are searching for.

Jon Kibler
- --
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC  USA
o: 843-849-8214
c: 843-224-2494
s: 843-564-4224

My PGP Fingerprint is:
BAA2 1F2C 5543 5D25 4636 A392 515C 5045 CF39 4253


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkhtH/4ACgkQUVxQRc85QlPDnQCeIet59/ypfJZ6OtwPwGQEV0U3
GFgAoKG9S7zGphl0woLZMK9VBcpMLyBr
=oFXq
-----END PGP SIGNATURE-----




==================================================
Filtered by: TRUSTEM.COM's Email Filtering Service
http://www.trustem.com/
No Spam. No Viruses. Just Good Clean Email.

Current thread:

software security auditing in Linux-based systems Chad Perrin (Jul 03)
- Re: software security auditing in Linux-based systems Jon Kibler (Jul 03)
  - Re: software security auditing in Linux-based systems Chad Perrin (Jul 04)
- Re: software security auditing in Linux-based systems Gleb Paharenko (Jul 04)
- <Possible follow-ups>
- Re: software security auditing in Linux-based systems Chad Perrin (Jul 04)