REMUS - REference Monitor for Unix Systems


The main objective of the REMUS project consists in developing an Intrusion Prevention System for Linux kernel 2.4 that is able to detect any attempt to hijack the control of privileged processes, for example by means of buffer overflow attacks. REMUS is designed to confine root-privileged and setuid processes by mediating their use of security-relevant system calls. In particular, REMUS provides: