
                            Freestone 1.0
         The First Freely Available Release of Brimstone [tm]
                         A Brief Announcement

                                  /\
                           ----- /  \ -----
                              / /    \ \
                             / /      \ \
                             \ \      / /
                              \ \    / /
                           ----- \  / -----
                                  \/
                           SOS Corporation

SOS Corporation has decided to make source code of a genetic
derivative of various parts of our Brimstone firewall freely
available.  This package is called Freestone.

Freestone is a portable, fully-functional firewall implementation.  An
enhanced, commercial version of it (Brimstone) is used at several
large customer sites.  Using Freestone source code, for example, FTP
and Telnet proxies extended with an access control list mechanism can
be built.  Note however, that building and configuring the system
requires deep understanding and experience of Unix systems and
security in general.


Freestone is currently available from:

        ftp://ftp.cs.columbia.edu/pub/sos/freestone
        ftp://ftp.soscorp.com/pub/sos/freestone
        ftp://coast.cs.purdue.edu/pub/tools/unix/freestone

Please read README.requirements to see what other packages you will
need to compile Freestone.  You should read all of the README* files
before attempting to compile and install Freestone.

Freestone, while freely available, is not in the public domain or
licensed for resale.  For full information, please read the file
LICENSE in the freestone distribution.


There are several mailing lists relating to Freestone and other
software available from SOS.  For more information:

`echo "help" | Mail majordomo@majordomo.soscorp.com`

        
The following is a list of features of Freestone:

- Supports most popular access control mechanisms on a per user basis:
        Time of Day, Day of Week, Date, Source Address, Source Port,
        Destination Address, and Destination Service.
- Supports most popular interactive protocols with application gateway:
        TELNET, FTP, X11, and more.
- Special SMTP (mail) support using two daemons.
- Supports most other protocols with session relays: HTTP, NNTP,
        Gopher, Generic UDP, and Generic TCP.
- Supports unencumbered access to all protocols from internal networks
        with Socks.
- Direct API support for most popular authenticators: Simple Passwords,
        S/Key, SecurID, CryptoCARD
- Asynchronous alerts via email/alpha-pages/programs.
- Automatic setlf-audit for unauthorized changes.
- Detailed logs.
- Flexible Reports.
- Time Synchronization via RFC1305.
- Censored DNS information provided to public networks.
- Currently compiles on:
        SunOS 4.1.3_U1, Solaris 2.x (sparc), IRIX 5.3, BSDI 1.1 (x86).
- Compiles but not tested on:
        HPUX 9.x (HPPA), Solaris 2.4 (x86)


SOS Corporation is asking anyone who has made changes, enhancements,
new ports, or fixes to Freestone to send their changes to us.  Any
patches sent in will be reviewed and if appropriate, incorporated into
the next release of Freestone.  Based on number of changes, we will
release updated versions of Freestone.  A list of people who
contributed fixes, which are accepted by us, will be included with
each new release.


                Address:        SOS Corporation
                                461 5th Avenue
                                16th floor
                                New York, NY 10017
                Phone:          +1 212 686 5700
                Fax:            +1 212 686 5703
                Email:          info@soscorp.com
                WWW:            http://www.soscorp.com
