摘要
安全操作系统是网络安全的重要研究内容,通过分析Linux内核入侵检测系统(LIDS),验证了Linux操作系统良好的安全性。文章主要分析了LIDS如何保护系统重要文件和进程;怎样利用封装内核的策略限制进程的权限和可装载内核模块(LKM)的启动,最后阐述了怎样利用LIDS阻止恶意代码的攻击。
Safety operation system in network security is an important subject of research,and LIDS proves the reliable performance of Linux.This article tries to analyse the Linux intrusion detect system,including the ways LIDS protects the file system and the process,and the policy for LIDS to seal the kernel to limit the privilege of the process and restrict loadable kernel modules,and the methods by which LIDS prevents the vicious codes from attacking.
出处
《信息工程大学学报》
2004年第1期63-66,共4页
Journal of Information Engineering University
关键词
LIDS
内核
可装载模块
能力
套接字
Linux intrusion detect system
kernel
loadable kernel modules
capability
socket