Linux sysmask

Sysmask is a powerful and flexible security enhancement package for Linux systems, featuring interactive security reactions, protection against both system level and user level networking risks, capability of disarming many kernel vulnerabilities, etc.


The online challenge is no more available. Check on the Internet Web archive if you want to know a little more how it worked...

General help topics

  1. What is sysmask?
  2. Availability and copyright
  3. How to install sysmask.
  4. How secure is sysmask?
  5. Performance overhead of sysmask
  6. Design principles of sysmask
  7. Comparing with other security models
  8. Customized user authentication schemes based on sysmask
  9. Future extensions and enhancements
  10. Bugs and bug reports

Technical documentation

  1. Structure of sysmask, and how it works
  2. The utility program /bin/sysmask
  3. List of available masks and their meanings
  4. Mask triggers
  5. Exceptions to system call masks
  6. The log file of sysmask
  7. Sysmask configuration
  8. How to configure file access policies
  9. Socket address to pathname translation
  10. How to configure sysmask for a software
  11. Runtime reconfiguration of a token
  12. Examples of software configuration
  13. Token switching in the template configuration
  14. System call risk level classification
  15. List of system calls by name
  16. List of system calls by number