August 25, 2009
This week’s TechMail is Monitor your system for threats with rsec alerts which discusses the rsec tool I forked from Mandriva’s msec years ago (for Annvix). It’s been updated and is available for Red Hat Enterprise Linux 5 (and CentOS 5) as I think it’s still a pretty good tool and complements stuff like logwatch quite nicely. rsec essentially reports on various bits of your system… it lets you know if there are changes to suid/sgid files, points out unowned files, changes to firewall rules, indicates if there are new packages to install, if there are changes to listening services, etc. Basically it took all the best bits (reporting) of msec and got rid of all the crappy bits (that change things).
I have heard that msec now is much better, but have not had a chance to try it although I do try to keep up with the changes to msec related to reporting and fold those back into rsec.
March 17, 2009
Well, sort of.
Annvix is not coming back as an operating system like it used to be, but rather a repository of packages for RHEL/CentOS (currently just version 5). There is very little there right now: a new version of openssh and a new version of logwatch. It will increase as time permits. I do plan on “porting” some of the stuff I had done for Annvix to RHEL5; things like rsec, AIDE+GPG, runit, scripts to use with runit, etc. Essentially those things that were fun to deal with on Annvix, but without the pain of managing a whole OS.
If you feel like giving it a go, just execute:
# rpm -ivh http://repo.annvix.org/media/EL5/x86_64/annvix-release-1.0-2.el5.avx.x86_64.rpm
on your RHEL5 or CentOS5 install (change x86_64 to i386 if you’re using an x86 system). If you have the priority plugin setup on CentOS, make sure you edit /etc/yum.repos.d/annvix.repo and add:
priority = 1
or something suitable. The annvix.org web site will be updated at some point to reflect that Annvix is a repository add-on to RHEL5 now instead of a stand-alone OS.
January 16, 2008
This is quite exciting for me as no one (other than myself) has ever written anything about Annvix before. But today I saw that Linux.com had written a review of Annvix. The title was Annvix: A stable, secure, no-frills server distro and I don’t think the reviewer realized quite what he was getting himself into when he downloaded it, but the review was pretty good.
It’s exciting to see the first review of something you’ve spent four years working on, especially when you’re not the one to write it. =)
December 30, 2007
Just finished releasing Annvix 3.0-RELEASE. It’s been almost a year since the last release and while this one isn’t as significant (in terms of features) as 2.0-RELEASE was, it’s significant in that RSBAC is gone, AppArmor is default, new kernel, new glibc, and a whole host of other new stuff.
If anyone has an account on fsdaily.com, I’d love it if you could vote for the story and help make it hit the frontpage (shouldn’t be too hard, looks like it’s a fairly new site, kinda like digg).
March 30, 2006
I moved all the Annvix-related blog entries to the new Annvix Developer’s Blog since I’m “consolidating” all Annvix-related stuff there. That means this blog will be “Annvix clean” (at least as far as technical-ish stuff goes).
Just a heads up in case you wonder why a) a category was removed and b) why some entries seem to have disappeared.
