Related Work

From Dazuko
Revision as of 13:19, 24 August 2012 by Root (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Here is a list of various things that are related (similar goals, similar features) to the Dazuko project.

Public Discussion for Linux Malware Technology
This is a mailing list to discuss integrating hooks for the anti-virus community into the Linux kernel. The effort was originally started by Red Hat but now involves several Linux distributions and anti-virus companies.
fanotify
The first userspace file access control framework to make it into mainline Linux. It should be officially available for the 2.6.37 kernel. Example programs demonstrating how to use the interface are available.
Redirecting Filesystem (RedirFS)
A project similar to Dazuko that intercepts file access by hooking functions within the filesystem.
Kernel Generalized Event Management (KGEM)
A project similar to Dazuko that is maintained by CA.
TALPA
A project similar to Dazuko that is maintained by Sophos.
ClamFS
A project similar to Dazuko that intercepts file access by using a FUSE-based stackable filesystem. The project was developed for ClamAV software.
ServerProtect Kernel Hook Module (KHM)
A kernel module from Trend Micro to provide functionality similar to Dazuko.
LinuxShield
A kernel module from McAfee to provide functionality similar to Dazuko.
kavmon
A kernel module from Kaspersky Lab to provide functionality similar to Dazuko.
File System Translator (FiST)
A project that provides templates for creating stackable filesystems.
inotify
A Linux kernel subsystem that provides file system event notification.
Linux Security Modules (LSM)
A framework that allows the Linux kernel to support a variety of computer security models while avoiding favoritism toward any single security implementation.
samba-vscan
A module for Samba, which uses the VFS (virtual file system) features of Samba to allow on-access anti-virus capabilities for Samba shares.
Rule Set Based Access Control (RSBAC)
RSBAC is a flexible, powerful and fast (low overhead) open source access control framework for current Linux kernels.
Personal tools