From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from jazzband.ncsc.mil (jazzband.ncsc.mil [144.51.5.4]) by tycho.ncsc.mil (8.9.3/8.9.3) with ESMTP id UAA17846 for ; Tue, 20 Mar 2001 20:00:07 -0500 (EST) Received: from jazzband.ncsc.mil (localhost [127.0.0.1]) by jazzband.ncsc.mil with ESMTP id BAA23416 for ; Wed, 21 Mar 2001 01:00:05 GMT Received: from ecstasy.ksu.ru (ecstasy.ksu.ru [193.232.252.41]) by jazzband.ncsc.mil with ESMTP id BAA23412 for ; Wed, 21 Mar 2001 01:00:03 GMT Received: from ksu.ru (ic29.soros.ksu.ru [194.85.244.129]) by ecstasy.ksu.ru (8.9.3/8.9.3) with ESMTP id DAA06203 for ; Wed, 21 Mar 2001 03:56:23 +0300 (MSK) Message-ID: <3AB7FC36.1050007@ksu.ru> Date: Wed, 21 Mar 2001 03:56:22 +0300 From: Pedro Rosa MIME-Version: 1.0 To: selinux Subject: Re: lids References: <3AB7CBBB.1060404@ksu.ru> <20010320163121.E17475@ultraviolet.org> Content-Type: text/plain; charset=us-ascii; format=flowed Sender: owner-selinux@tycho.nsa.gov List-Id: selinux@tycho.nsa.gov Tracy R Reed wrote: > On Wed, Mar 21, 2001 at 12:29:31AM +0300, Pedro Rosa wrote: > >> Sorry but LIDS stands for Linux Intrusion Detection System. Its main >> purpose has nothing to do with what SELinux deals with. I don't know too > > > The name is a misnomer. It doesn't have much to do with intrusion > detection. Even the portscanner is acknowledged as not really fitting in > with the rest of the system and most believe it should be elsewhere. They > have occasionally discussed changing the name on the LIDS list where I am > a subscriber. LIDS implements MACs much like SE Linux. It has little if > anything to do with NIDS. Would you please stop ranting so much and just > spend a few days reading and considering the opinions of others? Please stop the flame ok? First tell me where are the MACs in LIDS? Don't mess ACLs with MACs. MAC is mostly like an ACL but still needs that central administrative mechanism that NSA docs tell a lot about. And LIDS doesn't have such. Besides I did read LIDS before stating this stuff. Yes, it was some monthes ago on 1.0.2 (October if I'm not mistaken). And while I may not remember everything I read, I see that comparing SELinux to LIDS is the same as comparing an elephant to a rhinoceros. Before teaching others, it is good to just make a pass by through the specs, you know? > Ektanoor -- You have received this message because you are subscribed to the selinux list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.