fwlogwatch is a packet filter and firewall log analyzer
General features:
- Can detect and process log entries in the following formats:
- Linux ipchains, Linux netfilter/iptables, Solaris/BSD/Irix/HP-UX
ipfilter, BSD ipfw, Cisco IOS, Cisco PIX / FWSM, NetScreen,
Windows XP firewall, Elsa Lancom router, Snort IDS
- Entries can be parsed from single, multiple and combined log files,
the parsers to be used can be selected.
- Gzip-compressed logs are supported transparently.
- Can separate recent from old entries and detects timewarps in log files.
- Can recognize 'last message repeated' entries concerning the firewall.
- Integrated resolver for protocols, services and host names.
- Can do lookups in the whois database.
- Own DNS and whois information cache for faster lookups.
- Hosts, networks, ports, chains and branches (targets) can be selected or
excluded as needed.
- Support for internationalization (available in english, german,
portuguese, simplified and traditional chinese, swedish and japanese).
cf is a filter that reads files or stdin and replaces numeric
timestamps found at the beginning of each line with a formated time
and date time and date.
Smi is a Simple Markup Interpreter / filter for simplified Markup dialect.
smi can be fed text in Markdown, and return HTML output. smi can be fed
HTML, and return the markup translated to entities. I use smi as a filter
for devel/cgit to parse the README.md files, returning HTML output. I am
also using it to markup wiki pages, for a git backed wiki. The use cases
are limited only by your imagination.
Anti-Spam SMTP Proxy is a spam filter that sits on port 25 in front of your
regular SMTP server (sendmail, postfix, qmail, etc).
ASSP performs a number of configurable spam checks, and on detecting a spam
message, provides an immediate 5xx SMTP error code back to the client.
Non-spam messages are passed to your regular SMTP server for further
processing and delivery. ASSP includes SSL and IPv6 support. It is a single
script with a web-based configuration tool.
ASSP offers:
- a whitelist of known good senders
- Bayesian checks on message headers and contents
- recipient address validation using LDAP and RFC822 conformance
- relay denial
- HELO checking
- SPF (Sender Policy Framework) checking
- DNSBL (DNS Block List) checking using many DNSBL services
- various SMTP error modes detection
- Virus detection
and many other spam detection techniques.
mod_xml2enc is a transcoding module that can be used to extend the
internationalisation support of libxml2-based filter modules by
converting encoding before and/or after the filter has run.
Thus an unsupported input charset can be converted to UTF-8,
and output can also be converted to another charset if required.
py-pf is a pure-Python module for managing OpenBSD's Packet Filter. It aims
to combine the flexibility of PF's C API and the power of Python, making it
easier to manage PF data and to integrate firewalling capabilities in more
complex applications.
This plugin will place "Spam" and/or "Not Spam" buttons on the mailbox message
list page as well as on a single message view page. The action associated with
the buttons (as well as the button text) can be configured to suit most any
spam reporting system. Reporting by email, reporting by executing a command on
the server and reporting by moving (or copying) the message to a designated
folder are all supported. Any number of custom buttons may also be added, where
the associated action is completely customizable (for instance, adding the
message sender to a whitelist or blacklist).
Vipul's Razor is a distributed, collaborative, spam detection and filtering
network. Razor establishes a distributed and constantly updating catalogue
of spam in propagation. This catalogue is used by clients to filter out
known spam. On receiving a spam, a Razor Reporting Agent (run by an end-user
or a troll box) calculates and submits a 20-character unique identification
of the spam (a SHA Digest) to its closest Razor Catalogue Server. The
Catalogue Server echos this signature to other trusted servers after storing
it in its database. Prior to manual processing or transport-level reception,
Razor Filtering Agents (end-users and MTAs) check their incoming mail against
a Catalogue Server and filter out or deny transport in case of a signature
match. Catalogued spam, once identified and reported by a Reporting Agent,
can be blocked out by the rest of the Filtering Agents on the network.
This plugin enables the scanning of incoming mail received from a POP, IMAP,
or LOCAL account using Bogofilter. It can optionally delete mail identified
as spam or save it to a designated folder. Bogofilter is a pure Bayesian
filter, therefore it has better speed performance than SpamAssassin but might
catch less spam.
The inplace(1) command is a utility to edit files in-place through
given filter commands preserving the original file attributes. Mode
and ownership (user and group) are preserved by default, and time
(access and modification) by choice.
Examples:
# Sort files in-place using sort(1):
inplace sort file1 file2 file3
# Process image files preserving time and taking backup files:
inplace -t -b.orig 'convert -rotate 270 -resize 50%% %1 %2' *.jpg