Linux Intrusion Detection System
Xie Hua Gang <xhg at gem.ncic.ac.cn> - October 15th 1999, 06:21 EST
The Linux Intrusion Detection System is a patch which enhances the kernel's
security. When it is in effect, chosen files access, all system/network
administration operations, any capability use, raw device, mem, and I/O
access can be made impossible even for root. You can define which program can
access which file. It uses and extends the system capabilities bounding set
to control the whole system and adds some network and filesystem security
features to the kernel to enhance the security. You can finely tune the
security protections online, hide sensitive processes, receive security alerts
through
the network, and more.
www.lids.org
Torej to si dej gor zasciti dolocene file ki se ne smejo editirat in ... ti
nima kdo kej spreminjat k ne more.
On Wed, 19 Jul 2000 17:30:00 +0200, Mitja said:
> Zivjo,
>
> 1. rad bi napisal skripto, ki bi vsaj v osnovi testirala, ce je kdo vdrl na
> masino in kaj saril po njej.
> Kaj predlagate, da preverim ?
> wtmp, binarye, ... ?
>
> 2. kake 2 tedna nazaj sem ze vprasal, kje bi lahko zvedel, s kasnimi
> opcijami se prevajajo posamezni
> moduli kernela, pa ni nobeden odgovoril.
> A to ne gre drugace, kot da se prebijem cez Makefile ali pa vsakic laufam
> make modules ?
>
> lp,
> Mitja
>
