Sign In/My Account | View Cart

• O'Reilly Home
• Community
• Books & Videos
• Safari Books Online
• Conferences
• Training
• School of Technology
• About

-->

Perl.com Downloads Documentation CPAN Mirror FAQs Training Resources Article Archive O'Reilly Books Perl Columns P5P Digest P6P Digest Perl Success Stories

We've expanded our Perl news coverage and improved our search! Search for all things Perl across O'Reilly! Search Search Tips Security AAFID2 - Autonomous Agents for Intrusion Detection AAFID is a distributed monitoring and intrusion detection system that employs small stand-alone programs (Agents) to perform monitoring functions in the hosts of a network. AAFID uses a hierarchical structure to collect the information produced by each agent, by each host, and by each set of hosts, so as to be able to detect suspicious activity. It is important to note that AAFID is not by itself a network-based intrusion detection system. It provides the infrastructure for distributing monitoring tasks over many hosts. Some agents may implement network monitoring functions, while others may implement host monitoring functions. Crowds Written entirely in Perl, Crowds is a system for protecting your privacy while you browse the web. For example, Crowds prevents a web server that you visit from learning information that could identify you. Named for the notion of blending into a crowd, Crowds operates by grouping users into a large and geographically diverse group (crowd) that collectively issues requests on behalf of its members. Web servers are unable to learn the true source of a request because it is equally likely to have originated from any member of the crowd, and indeed collaborating crowd members cannot distinguish the originator of a request from a member who is merely forwarding the request on behalf of another. Crypt::Blowfish_PP Blowfish is a published algorithm written by Bruce Schneier (http://www.counterpane.com/). Unlike IDEA or DES etc. there are no patent implications in using this algorithm. It uses anywhere between a 64 bit and a 144 bit key. The transform itself is fast and operates on a 64 bit block, and most of the calculation time is in initialising the context with the key data. The _PP name comes from the fact that this implementation is Pure Perl, and will not have any compatibility problems. Crypt::CBC Crypt::CBC is a Perl-only implementation of the cryptographic cipher block chaining mode (CBC). In combination with a block cipher such as Crypt::DES or Crypt::IDEA, you can encrypt and decrypt messages of arbitrarily long length. The encrypted messages are compatible with the encryption format used by SSLeay. In addition to this module you will need to install the MD5 module, and one or more of the Crypt::DES, Crypt::IDEA, or Crypt::Blowfish modules. Crypt::CBC A Perl-only implementation of the cryptographic cipher block chaining mode (CBC). In combination with a block cipher such as Crypt::DES or Crypt::IDEA, you can encrypt and decrypt messages of arbitrarily long length. The encrypted messages are compatible with the encryption format used by SSLeay. Crypt::Cracklib Perl interface to Alec Muffett's Cracklib. Crypt::DES Implements the DES (Data Encryption Standard) block cipher algorithm. Crypt::HCE_MD5 Perl extension implementing one way hash chaining encryption using MD5 -- This module implements a chaining block cipher using a one way hash. This method of encryption is the same that is used by radius (RFC2138) and is also described in Applied Cryptography. Two interfaces are provided in the module. The first is straight block encryption/decryption the second does base64 mime encoding/decoding of the encrypted/decrypted blocks. Crypt::HCE_SHA Perl extension implementing one way hash chaining encryption using SHA -- This module implements a chaining block cipher using a one way hash. This method of encryption is the same that is used by radius (RFC2138) and is also described in Applied Cryptography. Two interfaces are provided in the module. The first is straight block encryption/decryption the second does base64 mime encoding/decoding of the encrypted/decrypted blocks. The idea is the the two sides have a shared secret that supplies one of the keys and a randomly generated block of bytes provides the second key. The random key is passed in cleartext between the two sides. An example client and server are packaged as modules with this module. They are used in the tests. They can be found in the examples directory. Crypt::IDEA Implements the IDEA block cipher algorithm. Crypt::Passwd This module provides an interface layer between Perl 5 and Michael Glad's UFC Crypt (ultra fast 'crypt')library. Crypt::PasswdMD5 The unix_md5_crypt function provides a crypt()-compatible interface to the rather new MD5-based crypt() function found in modern operating systems. Crypt::PGP5 The Crypt::PGP5 module provides near complete access to PGP 5 functionality through an object oriented interface. It provides methods for encryption, decryption, signing, signature verification, key generation, key export and import, and most other key management functions. Crypt::Random Crypt::Random is a perl interface module to /dev/u?random devices found on most modern Unix systems. It provides two methods: makerandom() - generates a random number of specified bitsize. makerandom_itv() - generates a random number (uniformally distributed) in the specified interval. Crypt::RIPEMD160 Perl extension for the RIPEMD-160 Hash function -- The Crypt::RIPEMD160 module allows you to use the RIPEMD-160 Message Digest algorithm from within Perl programs. Crypt::TripleDES This module implements 3DES encryption in ECB mode. The code is based on Eric Young's implementation of DES in pure perl. It's quite slow because of the way Perl handles bit operations and is not recommended for use with large texts. Crypt::Twofish2 Crypt::CBC compliant Twofish encryption module Crypt::UnixCrypt Perl implementation of the crypt function. Examples of Perl scripts to process RADIUS accounting logs export-a-crypto-system sig A Perl program which implements RSA encryption and decryption, and is small enough to use as a signature file. HMAC::MD5 This module computes an HMAC MD5 digest as specified by RFC 2104. It is believed that HMAC MD5 is stronger than MD5. HMAC::SHA1 This module computes an HMAC SHA-1 digest as specified by RFC 2104. Also see Secure Hash Standard, FIPS PUB 180-1. Krb5 Krb5 provides an object oriented interface to the most commonly used functions included in the Kerberos 5 API. It was developed and tested using Perl 5.004_04 and MIT Kerberos 5 version 1.0.5. MD5 RSA's MD5 message digest algorithm. Computes a one-way %22thumbnail%22 of a message that's pretty hard to spoof, so bad guys won't be able to tamper with your message. Net::SSLeay An interface to Netscape's SSL (Secure Socket Layer). By Eric A. Young, hence %22eay%22. NTperl cgi-bin danger Starting at about mid December 1995 Tom Christiansen (of Perl fame) posted a warning to one or more mailing lists devoted to the Perl programming language. The warning was about the dangers of placing your PERL.EXE file within your \CGI-BIN\ directory on a Windows-NT web-server. This is a very unsafe thing to do! Perl Security Announcements PGP An interface to the Pretty Good Privacy public-key cryptography system. PGP::GPG::MessageProcessor PGP::GPG::MessageProcessor provides an interface to the encryption/decryption/signing/verifying methods of GNU Privacy Guard. It does not provide keyring manipulation. PGP::PGP5::MessageProcessor PGP::PGP5::MessageProcessor provides an interface to the encryption/decryption/signing/verifying methods of GNU Privacy Guard. It does not provide keyring manipulation. PGP::Sign This module creates and checks detached signatures for data. PGPHTML A perl script to make PGP signed web-pages. Protect Protect allows you to set perl subroutines into one of three modes, public, member, or private. In private mode, only code within the package in which the subroutine exists can call the subroutine. In member mode, only members with the package can call the subroutine. In public mode, any(one RADIUS::Packet Object-oriented Perl interface to RADIUS packets -- RADIUS (RFC2138) specifies a binary packet format which contains various values and attributes. RADIUS::Packet provides an interface to turn RADIUS packets into Perl data structures and vice-versa. SHA Interface to the NIST Secure Hash Algorithm (SHA). Also see the MD5 module above. Shadow Shadow is a simple module available for retrieving shadow passwords. It adds the getspnam function to perl. UNPGPHTML A perl script to return to the originals from PGP signed web-pages with PGPHTML WebPass The WebPass package was written by Bill Jones, Florida Community College at Jacksonville Webmaster, out of a need to give our faculty, staff, and students the ability to change their POP3 and/or Unix Shell account password without having them learn how to telnet (which most did not have access to anyways.) Works correctly under RedHat 5.x (the Hurricane & Manhattan releases.) Win32::DES The DES module does group two important funtions,the Unix crypt() function plus the DES encrypt() and decrypt() functions (it does use the ECB mode).

Sponsored By:

©2009, O'Reilly Media, Inc. (707) 827-7000 / (800) 998-9938 All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. About O'Reilly Academic Solutions Authors Contacts Customer Service Jobs Newsletters O'Reilly Labs Press Room Privacy Policy RSS Feeds Terms of Service User Groups Writing for O'Reilly Content Archive Business Technology Computer Technology Google Microsoft Mobile Network Operating System Digital Photography Programming Software Web Web Design More O'Reilly Sites O'Reilly Radar Ignite Tools of Change for Publishing Digital Media Inside iPhone O'Reilly FYI makezine.com craftzine.com hackszine.com perl.com xml.com Partner Sites InsideRIA java.net O'Reilly Insights on Forbes.com