⭐ 欢迎来到虫虫下载站! | 📦 资源下载 📁 资源专辑 ℹ️ 关于我们
⭐ 虫虫下载站
📤 上传资源

📄 00000008.htm

📁 一份很好的linux入门资料
💻 HTM
字号:
🔍 
<HTML><HEAD>  <TITLE>BBS水木清华站∶精华区</TITLE></HEAD><BODY><CENTER><H1>BBS水木清华站∶精华区</H1></CENTER>发信人:&nbsp;pure&nbsp;(青衣~&nbsp;shadow&nbsp;in&nbsp;silence),&nbsp;信区:&nbsp;Linux&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<BR>标&nbsp;&nbsp;题:&nbsp;Re:&nbsp;Linux&nbsp;Intrusion&nbsp;Detection&nbsp;0.4&nbsp;released&nbsp;<BR>发信站:&nbsp;BBS&nbsp;水木清华站&nbsp;(Fri&nbsp;Nov&nbsp;19&nbsp;23:20:56&nbsp;1999)&nbsp;<BR>&nbsp;<BR>sorry&nbsp;first.&nbsp;<BR>I&nbsp;want&nbsp;to&nbsp;propose&nbsp;some&nbsp;questions&nbsp;about&nbsp;your&nbsp;project.&nbsp;<BR>1:&nbsp;Your&nbsp;system&nbsp;name's&nbsp;object&nbsp;is&nbsp;Intrusion&nbsp;Protection&nbsp;System&nbsp;<BR>&nbsp;&nbsp;&nbsp;not&nbsp;Intrustion&nbsp;Detection&nbsp;System&nbsp;because&nbsp;you&nbsp;just&nbsp;add&nbsp;<BR>&nbsp;&nbsp;&nbsp;protect&nbsp;to&nbsp;some&nbsp;important&nbsp;files&nbsp;and&nbsp;such&nbsp;things.&nbsp;<BR>2:&nbsp;Your&nbsp;code&nbsp;is&nbsp;hard-coded&nbsp;in&nbsp;kernel,&nbsp;but&nbsp;better&nbsp;solution&nbsp;<BR>&nbsp;&nbsp;&nbsp;is&nbsp;to&nbsp;implement&nbsp;a&nbsp;complete&nbsp;security&nbsp;level&nbsp;in&nbsp;Linux,&nbsp;<BR>&nbsp;&nbsp;&nbsp;similar&nbsp;to&nbsp;FreeBSD's&nbsp;security&nbsp;level&nbsp;and&nbsp;everyboy&nbsp;may&nbsp;<BR>&nbsp;&nbsp;&nbsp;change&nbsp;it&nbsp;at&nbsp;fly.&nbsp;<BR>3:&nbsp;Doing&nbsp;a&nbsp;not-comptiable&nbsp;kernel&nbsp;patch&nbsp;which&nbsp;can't&nbsp;merge&nbsp;into&nbsp;<BR>&nbsp;&nbsp;&nbsp;official&nbsp;kernel&nbsp;is&nbsp;not&nbsp;very&nbsp;good&nbsp;thing&nbsp;for&nbsp;us.&nbsp;<BR>&nbsp;&nbsp;&nbsp;Just&nbsp;my&nbsp;opinions,&nbsp;free&nbsp;discussions&nbsp;are&nbsp;welcomed!&nbsp;<BR>&nbsp;<BR>【&nbsp;在&nbsp;vertex&nbsp;(lancelord)&nbsp;的大作中提到:&nbsp;】&nbsp;<BR>∶<I>&nbsp;Linux&nbsp;Intrusion&nbsp;Detection&nbsp;System&nbsp;0.4&nbsp;release&nbsp;</I><BR>∶<I>&nbsp;---------------------------------------&nbsp;</I><BR>∶<I>&nbsp;Linux&nbsp;Intrusion&nbsp;Detection&nbsp;System&nbsp;is&nbsp;a&nbsp;linux&nbsp;kernel&nbsp;patch&nbsp;&nbsp;</I><BR>∶<I>&nbsp;and&nbsp;modules&nbsp;to&nbsp;enhance&nbsp;the&nbsp;linux&nbsp;kernel&nbsp;security.&nbsp;It&nbsp;can&nbsp;&nbsp;</I><BR>∶<I>&nbsp;protect&nbsp;important&nbsp;files&nbsp;from&nbsp;being&nbsp;changed.&nbsp;When&nbsp;it's&nbsp;in&nbsp;&nbsp;</I><BR>∶<I>&nbsp;effect,&nbsp;no&nbsp;one&nbsp;(including&nbsp;root)&nbsp;can&nbsp;change&nbsp;the&nbsp;protected&nbsp;&nbsp;</I><BR>∶<I>&nbsp;files&nbsp;or&nbsp;directories&nbsp;and&nbsp;their&nbsp;sub-directories,&nbsp;and&nbsp;the&nbsp;&nbsp;</I><BR>∶<I>&nbsp;protected&nbsp;append-only&nbsp;files&nbsp;can&nbsp;only&nbsp;be&nbsp;appended.&nbsp;It&nbsp;can&nbsp;prevent&nbsp;&nbsp;</I><BR>∶<I>&nbsp;loaded&nbsp;modules&nbsp;from&nbsp;being&nbsp;unload,&nbsp;mounted&nbsp;filesystems&nbsp;from&nbsp;being&nbsp;&nbsp;</I><BR>∶<I>&nbsp;unmount&nbsp;and&nbsp;lauched&nbsp;processes&nbsp;from&nbsp;being&nbsp;kill.&nbsp;It&nbsp;can&nbsp;&nbsp;</I><BR>∶<I>&nbsp;also&nbsp;protect&nbsp;the&nbsp;hard&nbsp;disk's&nbsp;MBR,&nbsp;and&nbsp;can&nbsp;also&nbsp;disallow&nbsp;&nbsp;</I><BR>∶<I>&nbsp;sniffing&nbsp;while&nbsp;the&nbsp;NIC&nbsp;is&nbsp;in&nbsp;promiscuous&nbsp;mode.&nbsp;&nbsp;</I><BR>∶<I>&nbsp;For&nbsp;more&nbsp;detail&nbsp;,&nbsp;visit&nbsp;the&nbsp;homepage&nbsp;at&nbsp;&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<A HREF="http://www.soaring-bird.com.cn/oss_proj/lids/">http://www.soaring-bird.com.cn/oss_proj/lids/</A>&nbsp;&nbsp;</I><BR>∶<I>&nbsp;主要特征:&nbsp;</I><BR>∶<I>&nbsp;1.&nbsp;重要文件的保护&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;在生效的情况下,任何人包括&nbsp;root&nbsp;均不能改变受保护的文件.&nbsp;</I><BR>∶<I>&nbsp;2.&nbsp;重要&nbsp;log&nbsp;文件的保护&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;log&nbsp;文件只能增长.不能改变&nbsp;</I><BR>∶<I>&nbsp;3.&nbsp;安全的文件系统&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;系统启动时候载入的文件系统不能卸载.启动后载入的可以&nbsp;umount&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;启动后载入的系统只能&nbsp;mount&nbsp;到&nbsp;/mnt/&nbsp;</I><BR>∶<I>&nbsp;4.&nbsp;安全的进程保护&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;启动后载入的进程(&nbsp;其父为&nbsp;1&nbsp;)&nbsp;不能被杀.&nbsp;</I><BR>∶<I>&nbsp;5.&nbsp;安全的模块载入和载出&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;只能由/sbin/insmod&nbsp;载入modules.&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;只能载入&nbsp;/lib/modules&nbsp;下的&nbsp;modules&nbsp;</I><BR>∶<I>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;系统启动时载入的&nbsp;modules&nbsp;不能&nbsp;rmmod&nbsp;&nbsp;</I><BR>∶<I>&nbsp;6.&nbsp;更好的&nbsp;log&nbsp;信息.&nbsp;</I><BR>∶<I>&nbsp;7&nbsp;.&nbsp;更多的优点有待你的挖掘&nbsp;:-))&nbsp;</I><BR>&nbsp;<BR>&nbsp;<BR>--&nbsp;<BR>看着她笑,他忽然觉得她好寂寞好寂寞。&nbsp;<BR>她静静的看了他半天,才柔柔慢慢的:「&nbsp;你好像已经找到了。」&nbsp;<BR>&nbsp;<BR>※&nbsp;来源:·BBS&nbsp;水木清华站&nbsp;bbs.net.tsinghua.edu.cn·[FROM:&nbsp;202.112.45.46]&nbsp;<BR><CENTER><H1>BBS水木清华站∶精华区</H1></CENTER></BODY></HTML>

⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -