On Fri, 19 May 2000, Alan Cox wrote:
> > Now, a harden web server is now built with LIDS, It is more and
> > more difficulty and even impossible for a hacker to change your pages.
>
> I crack your X server. I get iopl3, I erase your disk flash firmware. You
> look very silly.
>
> LIDS is a useful tool but it isnt a complete security model. At the very
Yes, You are right, LIDS make just maks a security model in kernel which
is named as reference moinitor in information security. It give the
administrator a possibility to build a more secure system with it. I means
that it can make the intruder more harder to compromise the system.
> least you need to be revoking capabilities globally and also protecting
> any downloadable firmware (eg sound cards) from tampering.
>
> An alternative approach is compartmentalisation.
>
Thanks for the suggestion. I think LIDS has a long way to go, so it need
more people especialy like you to has some time glance at it and give some
suggestion.
> Alan
>
Thanks,
Xie
--
Happy Hacking
Linux Intrusion Detection System
http://www.lids.org/
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
