The Linux Intrusion Detection System (LIDS) is a
patch which enhances the kernel's security by
implementing a reference monitor and Mandatory
Access Control (MAC). When it is in effect, chosen
file access, all system/network administration
operations, any capability use, raw device,
memory, and I/O access can be made impossible
even for root. You can define which programs can
access specific files. It uses and extends the
system capabilities bounding set to control the
whole system and adds some network and
filesystem security features to the kernel to
enhance the security. You can finely tune the
security protections online, hide sensitive
processes, receive security alerts through the
network, and more.
