Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenBSD Gains "Fuzzy" User Profiling IDS

Posted by timothy on Tuesday December 9, 2003 @02:15PM from the and-who-the-hell-are-you dept.

NaveWeiss writes "According to the OpenBSD Journal, major work has been done on an innovative new OpenBSD feature termed 'fuzzy user profile' intrusion detection system' - or 'fupids.' According to Steffen Wendzel, the code 'creates profiles for every user who does an execve() syscall on obsd systems.'"

1 of 54 comments (clear)

Min score:

Reason:

Sort:

...noexec/ro on partitions... by Hobart · 2003-12-09 18:25 · Score: 4, Interesting

Another good move along these lines, I think, might be to mount all partitions as noexec, and mount all the partitions with executable content as read-only...

--
o/~ Join us now and share the software ...