Have anyone considered patching the Secure Kernel with the LIDS from
http://www.lids.org for Linux? I am thinking of patching the secure kernel
files with that and then compile it to see if I can implement a new system
to contribute back to the Mandrake for it.
Dunno if we have released the 2.2.18 version yet, but I am looking into
patching the 2.2.17 version at this moment and try it from there to see how
it works and see if it is worth while addition and to make Mandrake stands
out from other distros by having it part of the standard features.
Don't get me wrong...it got wonderful stuff, but we need a good IDS system
in there and frankly... I cannot seems to find one that is good for host by
host basis, not network version. Snort comes to mind, but I cannot afford
to setup a spare box to do the monitoring of all servers from remote box,
when I can do something about it on host basis.
----------------------------------------------
Linux Administrator & Consultant
Russell "Elik" Rademacher
