OSDN -- Develop and Download Open Source Software

RSS
Download List

Project Description

The Linux Intrusion Detection System (LIDS) is a
patch which enhances the kernel's security by
implementing a reference monitor and Mandatory
Access Control (MAC). When it is in effect, chosen
file access, all system/network administration
operations, any capability use, raw device,
memory, and I/O access can be made impossible
even for root. You can define which programs can
access specific files. It uses and extends the
system capabilities bounding set to control the
whole system and adds some network and
filesystem security features to the kernel to
enhance the security. You can finely tune the
security protections online, hide sensitive
processes, receive security alerts through the
network, and more.

System Requirements

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2004-06-29 19:52
2.2.0rc2 for 2.6.7

This version add a new option (LIDS_CONFIG_ALLOW_LFS) that allows a user to disable/enable the LFS while still be able to switch between states.
Tags: 2.6, Minor feature enhancements

2004-06-14 19:50
2.2.0rc1 for kernel 2.6.6

This version removes the lidsadm's inode/dev value initiazation routine from the kernel, adding the lidsadm's inode/dev into the config file. In this way, lidsadm's inode/dev will be get correctly even when the kernel boot with initrd. This version also removes the LIDS_SOCKET_NF_MARK support.
Tags: 2.6, Minor feature enhancements

2004-06-03 19:56
2.2.0pre5 for 2.6.6

This version merges a patch to fix some buffer overflow vulnerabilities, and adds "SCRIPT" support that can generate the LIDS script automatically. It also enhances the lidstools and kernel code to fix some overflow vulnerabilities, and remove the LIDS status code. The missed "lids.conf" has been added back to prevent compilation failure.
Tags: 2.6, Minor security fixes

2004-05-17 20:38
2.2.0pre4 for 2.6.6

This release fixes a bug in the bind checker and acl searching routine
and modifies some data structures to keep up with the new kernel 2.6.6.
Tags: 2.6, Minor bugfixes

2004-04-19 19:54
2.2.0pre3 for 2.6.5

This version fixes capability bugs, has some code cleanup in Kconfig, and re-adds the ACL fast guessing feature. The new ACL fast guessing support will enhance ACL search performance.
Tags: 2.6, Minor feature enhancements

Project Resources

Project Page Home Page Download: List