RaQPort: Security Package for CentOS + BlueQuartz Server Appliance

Our Security Package V-4.0.0 has been specifically designed for Appliance Servers such as CentOS + BlueQuartz, the Argon, Turbolinux Appliance Server and the RaQ550. All these appliances already come with some tools to detect portscans and buffer overflows. These tools are nice to have and are a step into the right direction. However, they do not offer the desired degree of protection which one would expect.

To prepare and to defend your valuable business assets against hacks we assembled a comprehensive, multi-layered Intrusion Detection and Prevention software which offers the best integrated protection available for your server appliance.

Our Security Package for the Sun Cobalt RaQ3 and RaQ4 has been in service for over three years and we installed it on hundreds of RaQs. Likewise, the Security Package for the RaQ550 has also been installed on many servers. We can't say that none of these servers were hacked, but often the Security Package alerted the server owners quickly of suspicous activity so that the damage could be kept within reason and did not go unnoticed.

Even the old generation 3 Security Package came with a fully blown and highly configureable firewall. However, this firewall could only be configured from the command line and most admins were reluctant to do so. So with the availability of the CentOS + BlueQuartz server appliances and the TLAS we renewed our effort in the Security Package and released version 4.0.0 which comes with a fully blown GUI interface that allows you to configure all sensible options of the Firewall and most other services that the Security Package brings aboard.

The security package we offer creates several lines of defence which protect your business assets and those of your customers. The question, which only you can answer, is: Can you afford to do without?

SANS claims: “When establishing an Intrusion Detection System Process, a defence in depth process concentrating on software, networks, and hardware is the key to success.”

Our approach to that follows these lines and creates several layers of protection. In short this includes the following software packages (detailed description follows):

Installation of all missing patches
Installation of our custom built Firewall
Installation of Portsentry in "Honeypot"-mode
Installation of LCAP to prevent loading of kernel modules
Installation of Logwatch
Installation of FCheck (similar to Tripwire)
Installation of automated CHKROOTKIT

New GUI Interface:

Control Panel	.. Basic Settings
Firewall Settings	.. View of all options from "Firewall Settings"
.. Blacklisted Hosts	.. Client Hosts and Services
. Open Ports	. Closed Ports
. Highport Access	. Outbound Access

Click on any image to enlarge

(Some images might differ from the actual product due to improvements, images were taken on an Argon)

Please note: Security is not a software which you buy, install and then never again have to care about. Security is a state of mind in which requires proper procedures and your vigilance to stay ahead of events.

Our Security Package can help you to stay on top of events and will aide you in the detection of attacks and compromises.

For more information please refer to the PDF manual.

Features:

Installation of all patches
Itables based Firewall
Portsentry
Logcheck
LCAP
Automated CHKrootkit
Easy and centralized maintenance
Full GUI Interface integration