Bug#173061: ITP: Titan - security hardening and audit

To: submit@bugs.debian.org
Subject: Bug#173061: ITP: Titan - security hardening and audit
From: Javier Fernández-Sanguino Peña <jfs@computer.org>
Date: Sat, 14 Dec 2002 18:48:22 +0100
Message-id: <[🔎] 20021214174822.GA10512@dat.etsit.upm.es>
Reply-to: Javier Fernández-Sanguino Peña <jfs@computer.org>, 173061@bugs.debian.org

Package: wnpp
Version: N/A; reported 2002-12-14
Severity: wishlist

  Package name    : titan
  Version         : 4.0 (beta 6)
  Upstream Author : Brad M. Powell, Dan Farmer, and Matthew Archibald
  URL             : http://www.fish.com/titan
  License	  : based on Artistic License (asked in debian-legal and
ok)
  Description     : Security hardening and audit modular tool

From the HTML pages:
       Titan is a collection of programs, each of which either fixes or
       tightens one or more potential security problems with a particular
       aspect in the setup or configuration of a Unix system. Conceived
       and created by Brad Powell, it was written in Bourne shell, and
       its simple modular design makes it trivial for anyone who can
       write a shell script or program to add to it, as well completely
       understand the internal workings of the system.
       Titan does not replace other security tools, but when used in
       combination with them it can help make the transformation of a
       new, out of the box system into a firewall or security conscious
       system into a significantly easier task. In a nutshell, it
       attempts to help improve the security of the system it runs on.
(...)
   Titan can help with all of these problems; its main design goals are:


     * After being run, the system should be more secure than when we
       started. Things may be broken, but it should be more secure! The
       truth is that most things you do to secure a system are probably
       not going to cause a problem. A vendor can't take that chance -
       but we can. In any case, we haven't run into anything that Titan
       has broken, but it certainly could happen.
(...)
     * Producing a consistent and understandably secure system.
(...)

Titan has recently (?) changed from a non-free license to use the Artistic
License. I considered packaging Titan at the time but dismissed it due to
its license. I will package it now.

Titan is a mixture of what Bastille and Tiger provide currently for
Debian. On one hand it can automatically secure a system (however, it's
less "verbose" that Bastille) on the other, it can check if the system is
secure (like Tiger does).

Javier Fernandez-Sanguino Peña

Attachment: pgprQAelYUFQF.pgp
Description: PGP signature

Reply to:

Prev by Date: Bug#173050: ITP: png2ico -- utility to convert PNG files to Windows icon resource files.
Next by Date: Bug#173064: RFA: whizzytex -- a WYSIWIG environment for LaTeX
Previous by thread: Processed: commands
Next by thread: Bug#173064: RFA: whizzytex -- a WYSIWIG environment for LaTeX
Index(es):
- Date
- Thread