Ansible aims to be a radically simple IT automation system. It handles configuration management, application deployment, cloud provisioning, ad-hoc task execution, network automation, and multi-node orchestration. Ansible facilitates complex changes like zero-downtime rolling updates with load balancers. This package provides a curated set of community-maintained Ansible collections, which contain playbooks, roles, modules and plugins that extend Ansible.

Munge is an authentication service for creating and validating credentials. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having common users and groups. These hosts form a security realm that is defined by a shared cryptographic key. Clients within this security realm can create and validate credentials without the use of root privileges, reserved ports, or platform-specific methods.

fdupes is a program for identifying duplicate files residing within specified directories.

This package provides udev bindings for Python.

Fail2Ban scans log files like /var/log/auth.log and bans IP addresses conducting too many failed login attempts. It does this by updating system firewall rules to reject new connections from those IP addresses, for a configurable amount of time. Fail2Ban comes out-of-the-box ready to read many standard log files, such as those for sshd and Apache, and is easily configured to read any log file of your choosing, for any error you wish.

Though Fail2Ban is able to reduce the rate of incorrect authentication attempts, it cannot eliminate the risk presented by weak authentication. Set up services to use only two factor, or public/private authentication mechanisms if you really want to protect services.

Small console getty that is started on the Linux text console, asks for a login name and then transfers over to login. It is extended to allow automatic login and starting any app.

pam_uaccess is a PAM module that grants access to devices tagged uaccess in udev for the duration of the users' session, replacing elogind's uaccess feature.

MASSCAN is an asynchronous TCP port scanner. It can detect open ports, and also complete the TCP connection and interact with the remote application, collecting the information received.

Tcptrack is a sniffer which displays information about TCP connections it sees on a network interface. This is a fork of Steve Benson’s tcptrack.

The GNU Shepherd is a daemon-managing daemon, meaning that it supervises the execution of system services, replacing similar functionality found in typical init systems. It provides dependency-handling through a convenient interface and is based on GNU Guile.

Stress is a tool that imposes a configurable amount of CPU, memory, I/O, or disk stress on a POSIX-compliant operating system and reports any errors it detects.

Stress is not a benchmark. It is a tool used by system administrators to evaluate how well their systems will scale, by kernel programmers to evaluate perceived performance characteristics, and by systems programmers to expose the classes of bugs which only or more frequently manifest themselves when the system is under heavy load.

Spindle is a tool for improving the performance of dynamic library and Python loading in HPC environments.

wlgreet provides a greetd greeter that runs on a Wayland compositor such as sway. It is implemented with pure Wayland APIs, so it does not depend on a GUI toolkit.

Netcat is a featured networking utility which reads and writes data across network connections, using the TCP/IP protocol. It is designed to be a reliable "back-end" tool that can be used directly or easily driven by other programs and scripts. At the same time, it is a feature-rich network debugging and exploration tool, since it can create almost any kind of connection you would need and has several interesting built-in capabilities.

Pam-mount is a PAM module to mount volumes when a user logs in. It can mount all local file systems supported by mount, as well as LUKS volumes encrypted with the user's log-in password.

This package inherits pam-mount but is compiled specifically for use with the greetd log-in manager. It uses a different configuration location and PAM name space from the original.

This allows greetd-pam-mount to auto-(un)mount XDG_RUNTIME_DIR without interfering with any pam-mount configuration.

This package provides an on demand system DBus service. It allows callers to configure network authentication and domain membership in a standard way. Realmd discovers information about the domain or realm automatically and does not require complicated configuration in order to join a domain or realm. Dbus system service that manages discovery and enrollment in realms/domains like Active Directory or IPA.

Hosts is a command line program for managing /etc/hosts entries. On Guix System, /etc/hosts is managed from the system configuration; hosts only works when using the Guix package manager on a foreign distro. hosts works with existing hosts files and entries, providing commands to add, remove, comment, and search.

Lynis is a security auditing tool. It performs an in-depth security scan and runs on the system itself. The primary goal is to test security defenses and provide tips for further system hardening. It will also scan for general system information, vulnerable software packages, and possible configuration issues.

This package provides a command-line UEFI image editor, including cbfs, create-ffs, fmap, fspinfo, glzma, guid2english, microcode and utk CLI utilities.

Cpulimit limits the CPU usage of a process. It does not change the nice value or other scheduling priority settings, but the real CPU usage, and is able to adapt itself dynamically to the overall system load. Children processes and threads of the specified process may optionally share the same limits.

This package provides a simple, configurable system information tool.

The smartmontools package contains utility programs to control and monitor storage systems using the Self-Monitoring, Analysis and Reporting Technology System (S.M.A.R.T.) built into most modern ATA and SCSI hard disks. In many cases, these utilities will provide advanced warning of disk degradation and failure.

The GNU Shepherd is a daemon-managing daemon, meaning that it supervises the execution of system services, replacing similar functionality found in typical init systems. It provides dependency-handling through a convenient interface and is based on GNU Guile.

ISC's Dynamic Host Configuration Protocol (DHCP) distribution provides a reference implementation of all aspects of DHCP, through a suite of DHCP tools: server, client, and relay agent.

This software is end-of-life! ISC does not intend to issue any further maintenance releases.