All pages tagged with kernel
Hardning the Linux Kernel
This 26 page paper explores two approaches for hardening the standard Linux kernel. Address space or memory protection and access control. The author covers several well known hardening tips, including ...
Document added on March 12, 2011Incident Response Tools For Unix, Part One: System Tools
The best tools that can be utilized in response to the intrusion threat are not ones that will be discussed in detail in this series. The tools that will be ...
Written by: Holt Sorenson and added on June 24, 2011IPTables Linux firewall with packet string-matching support
Linux firewalling code has come a long way since the time ipfwadm was introduced in kernel version 1.2.1 in 1995. Ipfwadm enabled standard TCP/IP packet filtering features such as filtering ...
Written by: Anton Chuvakin and added on Feb. 3, 2011Check Point FireWall-1 HTTP Security Server performance tuning
HTTP protocol control is performed in the basic scope by the SMLI (Stateful Multi- Layer Inspection) on the operating system kernel level (2-3 OSI layer) and in the full scope ...
Written by: Mariusz Stawowski and added on March 8, 2011Build a Secure System with LIDS
LIDS ( Linux Intrusion Detection System) is a Linux kernel patch to enhance the Linux kernel. In this article, we will talk about LIDS, including what it can do and ...
Document added on Feb. 4, 2011Linux 2.4: Next Generation Kernel Security
This document outlines the kernel security improvements that have been made in the 2.4 kernel. A number of significant improvements including cryptography and access control make 2.4 a serious contender ...
Document added on Jan. 25, 2011Linux Kernel 2.4 Firewalling Matures: netfilter
In yet another set of advancements to the kernel IP packet filtering code, netfilter allows users to set up, maintain, and inspect the packet filtering rules in the new 2.4 ...
Written by: Dave Wreski and added on March 18, 2011Improving Linux Security Using Medusa
A project called Medusa provides a Linux kernel patch that intercepts certain kernel routines and queries an extra-kernel security provider. While this is similar to PAM, it has a number ...
Written by: Sean Russell and added on June 7, 2011Linux Firewall-related /proc Entries
Most people, when creating a Linux firewall, concentrate soley on manipulating kernel network filters: the rulesets you create using userspace tools such as iptables (2.4 kernels,) ipchains (2.2 kernels,) or ...
Written by: Brian Hatch and added on June 5, 2011Antivirus Concerns in XP and .NET Environments
After Windows NT was released, it took virus writers five years to learn how to infect it. Windows NT 3.1 and the Win32 API were released in late 1993, but ...
Document added on April 10, 2011