Jump to content

Linux Intrusion Detection System

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Kr4d (talk | contribs) at 09:26, 24 August 2006 (Updated a couple URLs which had moved). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

The Linux Intrusion Detection System (LIDS) is a kernel patch and admin tools which enhances the kernel's security by implementing Mandatory Access Control (MAC). When it is in effect, chosen file access, all system network administration operations, any capability use, raw device, memory, and I/O access can be made impossible even for root. You can define which programs can access specific files. It uses and extends the system capabilities bounding set to control the whole system and adds some network and filesystem security features to the kernel to enhance the security. You can finely tune the security protections online, hide sensitive processes, receive security alerts through the network, and more. LIDS currently support Linux kernel 2.6, 2.4. LIDS is released under GPL.

Awards

Retrieved from "https://en.wikipedia.org/w/index.php?title=Linux_Intrusion_Detection_System&oldid=71563815"