安全性
- For detailed guides, see the main ArchWiki page, Security.
防火牆
網路安全
- Arpwatch — Tool that monitors ethernet activity and keeps a database of Ethernet/IP address pairings.
-
http://ee.lbl.gov/ || arpwatch
- Honeyd — Tool that allows the user to set up and run multiple virtual hosts on a computer network.
-
http://www.honeyd.org/ || honeydAUR
- IPTraf — Console-based network monitoring utility.
-
https://fedorahosted.org/iptraf-ng/ || iptraf-ng
- Nmap — Security scanner used to discover hosts and services on a computer network, thus creating a "map" of the network.
-
http://nmap.org/ || nmap
- Ntop — Network probe that shows network usage in a way similar to what top does for processes.
-
http://www.ntop.org/ || ntop
- PortBunny — Extremly fast console port scanner.
-
http://www.recurity-labs.com/portbunny/index.shtml || portbunnyAUR[broken link: package not found]
- Snort — Network intrusion prevention and detection system.
-
http://www.snort.org/ || snortAUR
- Sshguard — Daemon that protects SSH and other services against brute-force attacts, similar to Fail2ban.
-
http://www.sshguard.net/ || sshguard
- vnStat — Console-based network traffic monitor that keeps a log of network traffic for the selected interfaces.
-
http://humdi.net/vnstat/ || vnstat
- Wireshark — Network protocol analyzer that lets you capture and interactively browse the traffic running on a computer network.
-
http://www.wireshark.org/ || wireshark-cli wireshark-gtk
威脅和漏洞偵測
- Nessus — Comprehensive vulnerability scanning program.
-
http://www.nessus.org/products/nessus || nessusAUR
-
http://tripwire.sourceforge.net/ || tripwireAUR
檔案安全
- AIDE — File and directory integrity checker.
-
http://aide.sourceforge.net/ || aide
- Logwatch — Customizable log analysis system.
-
http://sourceforge.net/projects/logwatch/ || logwatch
- Swatch — Utility that can monitor just about any type of log.
-
http://swatch.sourceforge.net/ || swatchAUR
- Tcpdump — Common console-based packet analyzer that allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network.
-
http://www.tcpdump.org/ || tcpdump
備份程式
螢幕鎖定
- slock — Very simple and lightweight X screen locker. Offers only a black background when locked, there are no animations or text fields.
-
http://tools.suckless.org/slock || slock
- sflock — Simple screen locker utility for X, based on slock. Provides a very basic user feedback.
-
https://github.com/benruijl/sflock || sflock-gitAUR
- sxlock — Fork of sflock with a few enhancements. Provides basic user feedback, uses PAM authentication, supports DPMS and RandR.
-
https://github.com/lahwaacz/sxlock || sxlock-gitAUR