[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Google
  Web www.spinics.net

Re: Grsec or lids?


Hello !

There was a special CD - issue in Germany
concerning Linux and Security . . .
the actual security-optimized software is:

bastille
compartment
galileo
grsecurity
kernel 2.2.22
LIDS
Linsec
LSM
Medusa
Openwall
RSBAC
SELinux
Systrace
Vserver

and all in all
to run this all together with
www.openwall.com/owl (1.0 ???).

You can order this special-issue CD on www.linux-magazin.de
its the celebrity issue of the 100thst issue of Linux-Magazin.

cheers.
and a merry christmas to you.

Tino.







Am Sam, 2002-12-21 um 01.19 schrieb Paulo Abrantes:
> On Sat, 21 Dec 2002 00:49:52 +0100
> Andreas Krennmair <ak@students.htl-klu.at> wrote:
> 
> > * Paulo Abrantes <pcma@mega.ist.utl.pt> [2002-12-18 21:12]:
> > > Both of the patches you mention are quite good, though I prefer
> > > GRSecurity. Being short and objective, is because GRSecurity 
> > > includes all the features that LIDS can give you, plus a couple
> > > of other, quite interesting. Just to give an example, LIDS only
> > > detects a portscan, though with GRsecurity you can detect it and 
> > > bogus the reply to make OS fingerprint more difficult (I won't
> > > say impossible).
> > 
> > Bah, this is only security by obscurity. Spoofing fingerprints doesn't
> > make the system more secure.
> > 
> 
> Security by obscurity, doesn't make your system more secure, though
> in this case, this feature makes your life easier to prevent worms 
> and kiddies hits on you  when they're scanning through OS fingerprints. 
> 
> Still I just pointed this feature as a plus of GRsecurity, though,
> that's not the unique one, if you don't know the program I suggest
> you, not to criticise. GRsecurity also implements features has system
> tracing, user activity logging, user restriction highly configurable,
> which will probably come in hand when implementing a shell server.
> 
> Regards to both, 
> 
> P. Abrantes 
> 
> ++++++++++++++++++++++++++++++++++++++++
> 	Computer Science Student @
> 	Instituto Superior Tecnico 
>   	 (http://www.ist.utl.pt)
>  
>  "A language that doesn't affect the way 
> you think about programming is not worth
> knowing." 
> ++++++++++++++++++++++++++++++++++++++++
> ------------------------------------------------------------------------
>      To unsubscribe email security-discuss-request@linuxsecurity.com
>          with "unsubscribe" in the subject of the message.
> 


------------------------------------------------------------------------
     To unsubscribe email security-discuss-request@linuxsecurity.com
         with "unsubscribe" in the subject of the message.

[Home]     [Fedora Announce]     [Linux Crypto]     [Kernel]     [Netfilter]     [Video for Linux]     [Bugtraq]     [USB]     [Network Security]     [Fedora Security]

Powered by Linux