September 2003 • Volume 12 • Number 9

Features

Strubinger examines foremost, a free forensics tool created for the Linux platform that is capable of recovering files from images made by the Unix utility dd, as well as images created by commercial applications.

How to Build a Honeypot • Kristy Westphal

Westphal looks at all aspects of honeypots: what they are, how to deploy them, and what should be considered before implementing them.

System V Init Staged on an RS/6000 SP Platform Bill McLean

McLean describes how to implement and control System V startup across RS/6000 Scalable Processor platforms, although it could easily be adapted to use across standalone servers.

Identifying Spam Events • Jason A. Richards

Richards shares a script for extracting pertinent information from mail logs and displaying it a usable fashion.

Detecting Kernel Rootkits • Sandra E. Ring and Eric Cole

Rootkits come in two basic forms: application-level, which are based on a series of trojaned programs, and kernel-level, which subvert the actual kernel of an operating system usually through loadable kernel modules. The authors explain how to detect and protect against these more complex kernel-level attacks.

Embedding man Pages in Shell Scripts with kshdoc • Michael Wang and Ed Schaefer

The authors present a Korn shell function that allows printing documentation embedded within a Korn shell script.

Securing Linux Systems with grsecurity • Keith McDuffee

grsecurity is an open source security package available for Linux that works primarily as a set of patches applied to the 2.4 Linux kernel, improving upon system security with more restricted process privileges.

I “new” It — A Generator for New Shell Script Templates • Joseph Pietras

Pietras shares a script he uses to generate script templates.

Build IPSec VPNs Using the Linux Kernel 2.6 • Ralf Spenneberg

Spenneberg takes a look at the new IPSec stack included in Linux kernel 2.6.

Columns

Computing Securely • Randal L. Schwartz

Departments

Call for Papers

New Products