OSDN -- Develop and Download Open Source Software

RSS
Download List

Project Description

The Linux Intrusion Detection System (LIDS) is a
patch which enhances the kernel's security by
implementing a reference monitor and Mandatory
Access Control (MAC). When it is in effect, chosen
file access, all system/network administration
operations, any capability use, raw device,
memory, and I/O access can be made impossible
even for root. You can define which programs can
access specific files. It uses and extends the
system capabilities bounding set to control the
whole system and adds some network and
filesystem security features to the kernel to
enhance the security. You can finely tune the
security protections online, hide sensitive
processes, receive security alerts through the
network, and more.

System Requirements

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2004-04-12 22:17
2.0.0pre2 for 2.6.5

This version adds back the bind port support, ACLs
on all filesystems, and enhances the ACL labeling
performance. This version also simplifies the ACL
reading in the kernel, and lets the lidsconf
userspace tool do more jobs. All of the
configuration file will be compiled into binary
files which will be used by kernel when
initializing and when switching states.
Tags: 2.6, Minor feature enhancements

2004-03-13 02:16
2.2.0pre1 for 2.6.3

This version stores ACLs directly into the XATTR, uses in-kernel SHA256 instead of RMD160, and removes some features like domain support, bind port support, time support, and the sending email in kernel support. This version is intended to be more compatible with the current kernel architecture, but with little change to existing usage.
Tags: 2.6, Major feature enhancements

Project Resources

Project Page Home Page Download: List