Guardian Digital is proud to be a citizen of the open source community. Some of the open source projects incorporated into EnGarde Secure Linux are detailed on this page. Click here for information on open source projects directly worked on during EnGarde Secure Linux development.

The Linux Kernel
The Linux kernel is the foundation of EnGarde Secure Linux, it provides true multitasking, virtual memory, shared libraries, memory management, and multistack networking including IPv4 and IPv6. Guardian Digital applies security patches to the stock Linux kernel to enhance its already high level of system security, providing a strong foundation for high security implementations.

The GNU C Library
The GNU C Library, or glibc, is the core system library used by EnGarde Secure Linux. It provides the low level system calls and combined with the Linux kernel forms the foundation of EnGarde Secure Linux.

Apache Web Server
The most popular web server on the Internet since 1996, the Apache HTTP Server is the industry standard. More than 70% of the domains on the Internet use Apache to serve their websites.

MySQL Database Server
MySQL is the world's most popular open source database. The 5.0 release includes enterprise features such as stored procedures, triggers, views, and more.

Postfix Mail Transfer Agent
Postfix is a Mail Transfer Agent written to have a strong emphasis on security as well as extremely fast performance.

BIND is the most popular DNS server in use on the Internet, and provides a robust and stable architecture for constructing a domain lookup system. EnGarde Secure Linux includes a specially configured installation of BIND in order to limit security vulnerability exposure.

OpenSSH is an open source protocol suite providing encryption for network services like remote login and remote file transfer.

SELinux is an open source extension to Linux that allows for the creation of a security policy that restricts each application on the system to perform only the actions required for normal operations, thereby preventing the exploitation of many security flaws. EnGarde Secure Linux uses SELinux controls to strictly limit all running applications to provide the highest possible level of security.

Perl is a popular scripting language ideal for text processing and automation of system administration tasks. Perl is an integral part of the internals of EnGarde Secure Linux.

PHP is a popular scripting language used to build dynamic websites for tasks such as e-commerce, webmail, content management systems and more.

The most secure and highly scalable open source FTP server available, VSFTP was designed from the ground up to be extremely secure and highly reliable. Many of the largest FTP sites on the Internet run VSFTP due to its high level of security and performance.

Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. An integral security component to many of Guardian Digital's award-winning security solutions, Snort utilizes protocol analysis functions, content searching/matching applications to proactively detect both common and uncommon Internet attacks such as buffer overflows, stealth port scans, CGI attacks, OS fingerprinting attempts, and much more.

AIDE stands for Advanced Intrusion Detection Environment and is a host-based IDS that monitors system files for unauthorized changes, notifying administrators of any attempt to install backdoors or otherwise compromise the system by changing system files.

Network UPS Tools
Network UPS Tools (NUT) is an open source project allowing systems to monitor UPS hardware and trigger automatic safe shutdowns of connected systems.

APT is a tool used to download and install updated software packages. It handles dependencies automatically, and helps ensure easy installation of security updates of EnGarde Secure Linux from the Guardian Digital Secure Network.

Netfilter / IPTables
Netfilter and iptables are the Linux firewall implementation used to provide stateless and stateful packet filtering, network address translation, and IP masquerading. EnGarde Secure Linux uses netfilter as the basis for its easily configurable and powerful firewall implementation.

MRTG is the Multi Router Traffic Grapher, a tool to monitor the traffic load on network links. MRTG generates graphical reports allowing users to view live visual representation of network traffic. EnGarde Secure Linux incorporates MRTG to provide this traffic analysis as well as graphs of CPU and RAM usage.

OpenSSL is an open source toolkit implementing the SSL and TLS network encryption protocols. EnGarde Secure Linux uses this toolkit to provide secure web services and certificate management as well as general purpose cryptography functions.

PAM stands for Pluggable Authentication Modules, and it allows users to replace the common username and password authentication process with any number of replacement authentication methods, such as centralized user databases, smart cards or other schemes. EnGarde Secure Linux builds PAM into the system to allow for easier customization of authentication mechanisms.

RPM, the Red Hat Package Manager format is used by EnGarde Secure Linux to package applications and application updates for easy download and installation. This integrates with APT and allows Guardian Digital to provide rapid updates and simple upgrade procedures to ensure timely distribution of security patches and application updates.

Rsync is an open source utility that provides extremely fast file transfers for backup and data replication purposes by only transmitting the changes since the previous transfer.