| Linux Environment Security is intended as a facility
to quickly & easily secure RedHat/RPM based environments (i.e:
turbo linux, open linux). It does such by enforcing root-only permissions
on system binaries (binaries that have no place being
executed by normal users), enforcing root-only path traversal on
system paths, enforcing immutable bit on essential rpm package contents
(i.e: coreutils), and enforcing immutable bit on shell profile scripts.
The combined usage of all les options provides an increased level
of local environment security, in the hopes to stem off environment
based attacks. Such attacks would consist of back-dooring system
binaries; tainting the $PATH variable to point to alien paths where
back-doored binaries are located; alterations to user profile scripts
to activate key loggers or process based hi-jacking; traversal exploration
of the system paths etc...; the possible
attack trends are endless hence the importance of hardening the
local environment space.
Download the current release of LES distributed
under the GNU GENERAL PUBLIC
LICENSE:
-
http://www.r-fx.ca/downloads/les-current.tar.gz
All projects on rfxnetworks.com are free for use and distribution in accordance
with the gnu gpl; funding for the continued
development and research into this and other projects, is solely
dependent on public contributions and donations. If this is your
first time using this software we ask that you evaluate it and consider
a small donation;
for those who frequent and are continued users of this and other
projects we also ask that you make an occasional small donation
to help ensure the future of our public projects.
Documents:
- http://www.rfxnetworks.com/appdocs/README.les
Version History:
- http://www.rfxnetworks.com/appdocs/CHANGELOG.les
|
