Linux Security 2 quits

Linux kernel (latest hardened kernel) We need a graphical gui install for the following new distro Also need backup of conifg to floppy or cd features restore from said media Need lpt port lock configured for install.. so can not install without lock System based on Debian Woody Security backports and bugfix (adduser, iptables, procps, e2fsprogs, lsof, etc.) Automatic installation (partitioning and formatting) Hardware devices auto-detection (SCSI cards, USB ports, Ethernet cards, etc...) SUPPORT FOR MAJOT BRAND 10/100 AND GIGABIT NICS REQUIRED WEB INTERFACE REQUIRED DSL and cable modems Ethernet auto-detection (PPP Over Ethernet) multiple good USB DSL modems auto-detection (Micro-code + PPP Over ATM) Internet connection configuration Stateful Inspection Firewall (netfilter/iptables + shorewall script) Protected shared Internet connection (Masking of internal IP addresses) Essential tools installed (vim, ntpdate, nmap, mc, netdiag, tcputils, tcpdump, etc.) DNS local server (bind) DHCP server (dhcd) Transparent proxy cache (squid) Administration of the firewall via a web interface (webmin + SSL) Postfix mails server Clamav Anti-virus via Amavisd-new Sanitizer mails cleaner Spamassassin Anti-spammer (spamc/spamd) Fetchmail external mail boxes fetcher POPa3d local server Freshclam anti-virus database updates Additional Webmin modules (Postfix, Spamassassin, Fetchmail) Local IMAP server (optional but appreciated) IPSEC support Outgoing trafic filter Web URL filter Virtual Private Networks (VPN) wireless support HTTP, SMTP, POP3, DNS Proxy-Socks system needs to be simple install for our school system needs custom logo splach page # Updating kernel to the latest release + security patches (grsecurity/openwall) # Thorough security audit # Installation and configuration of firewall (KissFirewall/Bastille Firewall/APF) # Installation of security updates as released by OS/Control Panel vendor # Installation of custom software as required by software # Configuration changes as desired by customer # Disabling of unused and insecure services # Removal of insecure packages and unnecessary software # Regular scans for easy-to-guess users passwords # Log auditing for unusual activity # Investigating hacking attempts # Restoring files from backup # Anti-spam configuration # Anti-virus configuration # Anti-DoS/DDoS kernel code tweaking # Default system users removal # SSH server hardening # Mod_Security (Intrusion detection and prevention engine for web applications) # Securing /tmp directory # Kernel tuning with sysctl # Snort (Network Intrusion Detection System) # Acid (Analysis Console for Intrusion Databases) # Smartd (HDD Reliability monitor) # SIM (System Integrity Monitor) # PRM (Process Resource Monitor) # SPRI (System Priority) # BFD (Brute Force Detection) # PMON (Socket Monitor) # Tripwire (keeps track of every file being moved/edited in the system) # CHkrootkit (Rootkit/Exploit scanner reports sent daily) # Nessus Installation no heavy up front costs will pay as work is completed We will not pay heavy until some substantial progress is made If not accept these terms please do not bid Approximate start date of the project after selecting a bid Immediate (within 1-2 days) Questions posted by the buyer How Much Linux Router/Security experience do you have? Have you ever developed a Debian Linux distro? Which One? Are you familiar with VPN and Intrusion Detection methods for Linux? Which ones?