Skip to main content
rfxn
LESGPL v2

Linux Environment Security

Automated security hardening for Linux systems

Documentation is being modernized. Expanded guides, configuration references, and usage examples are on the way.

Project PageDownload

On this page

OverviewFeaturesInstallationResources

Overview

Linux Environment Security (LES) provides an increased level of local environment security with the goal of preventing environment-based attacks.

Such attacks include compromised system binaries, tainting the $PATH variable to point to invalid paths where trojan or malicious binaries are located, alterations to user profile scripts to activate key loggers or process-based hijacking, and traversal exploration of system paths. The possible attack trends are numerous, underscoring the importance of hardening the local environment space.

Features

Hardening

  • Automated security hardening of local environment
  • PATH variable protection against tainting and trojan injection
  • User profile script integrity enforcement
  • System binary compromise prevention
  • Traversal exploration prevention across system paths
  • Security audit and remediation of system configuration

Installation

Install from tarball:

  $ wget https://www.rfxn.com/downloads/les-current.tar.gz
  $ tar xfz les-current.tar.gz
  $ cd les-*/
  $ sudo ./install.sh

Verify download integrity:

  $ wget https://www.rfxn.com/downloads/les-current.tar.gz.md5
  $ md5sum -c les-current.tar.gz.md5

Resources

Download: https://www.rfxn.com/downloads/les-current.tar.gz

More Documentation

LMDLinux Malware DetectAPFAdvanced Policy FirewallBFDBrute Force DetectionIRSYNCIncremental RsyncLSMLinux Socket Monitor