$B LIDS $B@_Dj%U%!%$%k$N:FFI$_9~$_(B $B>e$X(B: LIDS $B$N4IM}$*$h$S@_Dj%3%^%s%I(B $BLa$k(B: LIDS ACL$B$NI=<((B

LIDS ACL $B$K$D$$$F(B

LIDS ACL$B$K$O!"(B

• $B%U%!%$%k$K4X$9$k(BACL$B!#%U%!%$%k$N%"%/%;%95,Dj(B
• $B8"8B$N(BACL$B!#%W%m%0%i%`$N8"8B$r5,Dj(B

$B$NFs$D$,$"$j$^$9!#(B

$B$^$?!"(BACL $B$r@_Dj$9$k$H$-$K$O!"A0>O$G=R$Y$?$H$*$jFs$D$NMWAG(B

• $B%*%V%8%'%/%H!#(BACL $B$K$h$C$F5,Dj$5$l$k%U%!%$%k$d8"8B(B
• $B%5%V%8%'%/%H!#@)8B$5$l$?%*%V%8%'%/%H$K%"%/%;%9$7$h$&$H$9$k!"%W%m%0(B $B%i%`(B

$B$,$"$j$^$9!#(B

$BNc(B1

lfs# lidsconf -A -o /var/log/messages APPEND

$B>e$NNc$G$O!"(B/var/log/messages $B$H$$$&%U%!%$%k$K$?$$$7$F!"FI$_ $BNc(B2

lfs# lidsconf -A -s /usr/sbin/httpd -o CAP_NET_BIND_SERVICE -j GRANT

$B>e$NNc$G$O!"(BApache $B$N%W%m%;%9(B(httpd )$B$K!"(BCAP_NET_BIND_SERVICE $B$N8"8B$r$"(B $B$?$($F$$$^$9!#(B

$B$3$l$i$N=q<0$O!"(Bipchains/iptables $B$N@_Dj$K$J$l$F$$$k?M$G$"$l$P!"=q<0$,;w(B $B$F$$$k$N$GM}2r$7$d$9$$$H;W$$$^$9!#(B