用LIDS增强系统安全

1. uncompress the Linux kernel source code tree.
# cd linux_install_path/
# bzip2 -cd linux-2.2.17.tar.bz2 | tar -xvf -
2. uncompress the lids source code and install the lidsadm tool.
# cd lids_install_path
# tar -zxvf lids-0.9.8-2.2.17.tar.gz

# cd linux_install_path/linux
# patch -p1
/* link the default source path to lids patched version
# rm -rf /usr/src/linux
# ln -s linux_install_patch/linux /usr/src/linux

configure the Linux kernel
# cd linux
# make menuconfig or make xconfig

[*] Prompt for development and/or incomplete code/drivers
[*] Sysctl support
After that， you will find that a new item appear in the bottom
of the configuration menu name "Linux Intrusion Detection System".
Entering this menu， turn the
[*] Linux Intrusion Detection System support (EXPERIMENTAL) (NEW).

# make dep
# make clean
# make bzImage
# make modules
# make modules_install

# cp arch/i386/boot/bzImage /boot/bzImagelids0.9.92.2.17
/* build admin tools */
# cd lids0.9.82.2.17/lidsadm0.9.8/
# make
# make install
# less /etc/lilo.conf
boot=/dev/hda
map=/boot/map
install=/boot/boot.b
prompt
timeout=50
default=linux
image=/boot/vmlinuz2.2.163
label=linux
readonly
root=/dev/hda2
image=/boot/bzImagelids0.9.92.2.17
label=dev
readonly
root=/dev/hda2
运行/sbin/lilo 来安装新内核
# /sbin/lilo

# /sbin/lidsadm U

# /sbin/lidsadm I

# /sbin/lidsadm S LIDS

# /sbin/lidsadm S +RELOAD_CONF