OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Russell \ (elikunixhost2.thewebhostingpeople.com)
Date: Tue Feb 13 2001 - 09:20:47 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

            Yes I have. It is still in work in progress, but I got most of the basic
    functionality locked down, and I am working on some common tools which need
    to be available to everyone like the traceroute or ping tools plus nslookup.
    :)

            Plus... on the plus side.. I found it extremely useful, if unsettling to
    find some files totally hidden..and I mean... totally hidden like it never
    existed, but does allow some programs that requires access to it to function
    like it is there but could not be viewed.

            I am updating the kernel with couple of changes that the maintainer have
    posted on building new kernels from the SRC, since I found a few problems
    like no mod.deps file and one or two missing items which is needed
    critically to have a working kernel. Once that new packages are done, I
    will shift and focus on making the LIDS package addon to be as a seperate
    package til if they decide to have it intregrated entirely or not.

            Just to say at the least... it is very well designed program and sort of
    easy to use once you got hang of the basics to either turn off the LIDS
    locally in your console access or by remote session. Just having it
    tightened down beyond what I thought is possible is excellent, especially
    for sites that is sitting unprotected on the net and you have to use all
    tools available to protect it from any forms of attacks or attacker
    exploits, including running the Hostsentry on the system that have LIDS on
    it.

            BTW... it is great to hide the certain processes from prying eyes as well,
    like Hostsentry and few programs that you wanted to hide but vital to the
    system.

    ----------------------------------------------
    Linux Administrator & Consultant
    Russell "Elik" Rademacher

    -----Original Message-----
    From: Matthew Micene [mailto:mattexpresssearch.com]
    Sent: Tuesday, February 13, 2001 10:08 AM
    To: Russell "Elik" Rademacher
    Subject: Re: [Security Discuss] LIDS into the Kernal?

    Have you managed to succesfully lock down a system using LIDS? I have
    been reading and reading the documentation and appear to be suffering from
    a lack of examples. If you have some pointers on getting a LIDS system
    configured, that may be a greater boon than getting it into Mandrake's
    kernel. 

    --
Matthew Micene			   A host is a host from coast to coast,
Systems Development Manager	   and no one will talk to a host too close
Express Search Inc.		   Unless the host that isn't close
www.ExpressSearch.com		   is busy, hung or dead