Intrusion Detection Systems: Re: kernel implementations

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Intrusion Detection Systems mailing list archives

Re: kernel implementations

From: dugsong () monkey org (Dug Song)
Date: Fri, 21 Jul 2000 12:19:44 -0400 (EDT)


Archive: http://msgs.securepoint.com/ids
FAQ: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au
On Thu, 20 Jul 2000, John S Flowers wrote:

Alternately, I believe there's a Linux based IDS solution called LIDS
that does some of this, but they aren't achieving anywhere near the
speeds we're getting with our OpenBSD modifications.


LIDS does nothing of the sort, actually. they're focusing on providing
kernel audit facilities, finer-grained access controls, and an analog to
BSD securelevels.

you're probably thinking of Alexey Kuznetsov's "turbopacket" kernel
patch for Linux:

http://www.tux.org/pub/net/ip-routing/lbl-tools/http://www.tux.org/pub/net/ip-routing/lbl-tools/http://www.tux.org/pub/net/ip-routing/lbl-tools/kernel-turbopacket.dif.gz

-d.

http://www.monkey.org/~dugsong/

By Date By Thread

Current thread:

kernel implementations drellis () us ibm com (Jul 20)
- Re: kernel implementations John S Flowers (Jul 20)
  - Re: kernel implementations Dug Song (Jul 21)
    - Re: kernel implementations John S Flowers (Jul 21)
- RE: kernel implementations drellis () us ibm com (Jul 21)
- <Possible follow-ups>
- Re: kernel implementations drellis () us ibm com (Jul 21)
- Re: kernel implementations Robert Graham (Jul 21)
  - Re: kernel implementations Dug Song (Jul 21)