Assess System Security with a Linux LiveCD

An anonymous reader writes "Want to assess security vulnerabilities on your Linux system without lengthy installation and configuration efforts? This article introduce four packages -- Auditor, Whoppix, Knoppix-STD, and PHLAK -- that bring you that ability through the magic of LiveCD. These four LiveCD offerings specialize in nailing down vulnerabilities."

Re:No comments in like 5 minutes?

[strider44]

The world is round, you isolationist priest!

Pretty cool

[zappepcs]

Interesting that this round up of security tools is on an IBM website... well, sort of. Wonder if they will be made redundant by Vista?

Sorry, can't help but be happy to see people in the real world, doing valuable things, getting help from large companies, and doing them before and better than MS. The world of computing is changing and MS is already irrelevant... we just don't realize it fully yet.

Personally, I'll be checking out these four tools.

Audiwhax

[zbuffered]

Auditor and Whax (formerly Whoppix) are merging. [remote-exploit.org]

Pen tests.

[Aldric]

In articles like this the author always seems to forget that there's more to security than software. What good is a secure software setup when someone can just walk into the building and plug a WiFi hub into the internal network?

Re:Pen tests.

[UnapprovedThought]

True, but you have to take into account that some of these tools are getting smarter and smarter every time.

I just ran Auditor on my system the other day, and while it didn't find any problems with my firewall, it was able to:

• locate all of the pictures of lena.jpeg that some people in the office had downloaded
• accurately guess that Liz in the next cubicle is the office's biggest security problem
• complain that some office desktops had particularly drab background images

So, when I clicked "yes" when it

They sound like...

[CaptainPotato]

the latest sexually-transmitted diseases. Well, not Auditor perhaps, but the others...Whoppix, Knoppix-STD, and PHLAK. hate to think what happens when one catches Phlak... probably results in something that causes people to start sniffing your packets. ;)

Anymore?

[stevebenson]

These are awsome and will no doubt save anyone sometime when they run them it worked for and saved me about two and half hours. Was wondering if you knew of anymore?

Local Area Security

[b00m3rang]

L.A.S. is another network tool oriented Live CD. Check it out.

interesting they missed

[VolciMaster]

one of the popular live-CD distros, though more aimed at forensic recovery: freshmeat announcement [freshmeat.net] and FCCU homepage [d-fence.be]