tools

httptunnel is a GPL application for encapsulating network traffic within valid HTTP requests and responses.  This tunnel can be used to bypass firewalls, including many application proxies.  It is comprised of a server and client daemon written in C.

Installation couldn't be simpler.  It resides in the Debian package repository, so on Debian Sarge I was able to use apt to fetch and install the binaries and man pages:

~$ sudo apt-get install httptunnel

If you prefer to use the source, compilation uses the *nix "standard" ./configure; make; make install process:

VMware has announced the release of a free beta version of their server product, now renamed from GSX to VMWare server.   The final product is expected to be released in Q2, and will also be free (as in beer).

Now we just need to wait for their server to finish melting down so that we can download a copy. 

Fyodor has announced a new major release of Nmap, what might just be the most popular security tool around.  There is also a good interview with Fyodor at SecurityFocus which details many of the changes.

From Insecure.Org: 

"Changes since version 3.50 include a rewritten (for speed and memory efficiency) port scanning engine, ARP scanning, a brand new man page and install guide, 'l33t ASCII art, runtime interaction, massive version detection improvements, MAC address spoofing, increased Windows performance, 500 new OS detection fingerprints, and completion time estimates."

One of the most forgotten security tools is one most of us already have on our networks: Microsoft Windows

Most people are not using a fraction of Window's security features in companies.  Small and medium businesses can especially benefit from using the full functionality of the products they already have in place.

The following are a just a few of the many free features your company may not already be using.