SockMon
$25 USD one-time Fee
|
Description: SockMon is a dynamic
socket monitor for Linux environments. It monitors both Unix
Domain Sockets and standard IP Network Sockets (TCP, UDP). By
a basis of comparison files SockMon at the point of installation
makes a set of files with known-services running.
If/When a new service binds a port (no matter the port), it
dispatches an email alert to the configured emil address. It
can be configured to learn new ports as they bind to suppress
future alerts or to continually alert of any new ports bound
since the base comparison files were generated.
Ideal solution to sift-out unknown software that users initiate
or in a worse case scenario act as an early warning to backdoors.
Supported Platforms: Redhat, Slackware, CentOS, Mandrake,
Turbo Linux
Supported Appliance Software: Ensim
WP (any), Cpanel (any), Cobalt RaQ (any), Cobalt XTR (any),
Plesk (any)
*Appliance Software is not a requirement for this service |
