In computer security, the Linux Intrusion Detection System (LIDS) was a patch to the Linux kernel and associated administrative tools that enhanced the kernel's security by implementing mandatory access control (MAC). When LIDS was in effect all system network administration operations, chosen file access, any capability use, raw device, memory, and I/O access could be made impossible, even for root. One could define which programs can access specific files. It used and extended the system capabilities bounding set to control the whole system and added some network and filesystem security features to the kernel to enhance the security. One could finely tune the security protections online, hide sensitive processes, receive security alerts through the network, and more. LIDS supported Linux kernel 2.6, 2.4. LIDS was released under the terms of the GNU General Public License (GPL).
Current status
As of 2013, the Project appears to be dead. The last updates on the homepage and in the associated forum were from 2010, and as of 2018 the website is no longer running.
Awards
See also
- Free and open-source software portal
- AppArmor
- Security-Enhanced Linux (SELinux)
External links
- LIDS homepage (archive)
References
"2003 Results – SecTools". Sectools.org. Retrieved 2016-11-23. http://sectools.org/tools2003.html ↩
"2000 Results – SecTools". Sectools.org. Retrieved 2016-11-23. http://sectools.org/tools2000.html ↩
"Non-Existent Domain". Linux.davecentral.com. Archived from the original on 2016-11-24. Retrieved 2016-11-23. https://web.archive.org/web/20161124091454/http://linux.davecentral.com/ ↩