#!/usr/local/bin/perl -w
# Copyright (C) 2000, Free Software Foundation FSF.
#
# This file demonstrates possibilities of tags and timing.
# It is especially interesting to see in which way the slide-control
# window is produced from the data below.
#
# http://www.ppresenter.org

use lib '../..';
use PPresenter;

my $show = PPresenter->new
   ( -name       => 'LIDS'
   , -geometry   => '1024x786'
   , -totaltime  => 90*60
#  , -tags       => [ 'all' ]    # Overrules slide's -active spec.
   );
$show->select(template => 'tm'); # I know it is the default.
$show->select(fontset  => 'scaling');

$show->addSlide
   ( -title      => 'LIDS Vortrag'
   , -reqtime    => 75
   , -main       => <<MAIN
Das Linux Intrusion Detection System
MAIN
   );

$show->addSlide
   ( -title      => 'Warum LIDS'
   , -active     => 0
   , -main	 => <<MAIN
<UL>
<LI>File System ist ungeschützt
<LI>Ein Prozess ist ungeschützt
<LI>System Administration ist ungeschützt
<LI>Superuser (root) kann Rechte missbrauchen
</UL>
MAIN
   );

$show->addSlide
   ( -title      => 'Funktionsüberblick'
   , -active     => 0
   , -main	 => <<MAIN
<UL>
<LI>Capabilities
<LI>Mandatory Access Control Lists
</UL>
MAIN
   );

$show->addSlide
   ( -title      => 'Schutz'
   , -active     => 0
   , -main	 => <<MAIN
<UL>
<LI>Datei und Verzeichniss Schutz
<LI>Prozess Schutz
<LI>RAW IO Operationen Schutz
<LI>Schutz von sensiblen Daten
</UL>
MAIN
   );

$show->addSlide
   ( -title      => 'Alert'
   , -active     => 0
   , -main	 => <<MAIN
LIDS bietet einen Alert via klogd und Mail
MAIN
   );

$show->addSlide
   ( -title      => 'Konfiguration des LIDS Systems'
   , -active     => 0
   , -main	 => <<MAIN
<TT># lidsadm -U</TT> <BR>um Inode/Dev Tabelle upzudaten
MAIN
   );

$show->addSlide
   ( -title      => 'Absiegeln des Kernels'
   , -active     => 0
   , -main	 => <<MAIN
<TT># lidsadm -I</TT> um Kernel abzusiegeln
<BR>In Single User Modus ausfuehren
MAIN
   );

$show->addSlide
   ( -title      => 'Veraendern der Konfiguration'
   , -active     => 0
   , -main	 => <<MAIN
<TT># lidsadm -S -- +RELOAD_CONF</TT> um Kernel abzusiegeln
<TT># lidsadm -S -- -LIDS</TT> um lokal abzuschalten
<TT># lidsadm -S -- -LIDS_GLOBAL</TT> um global abzuschalten
MAIN
   );
   
$show->addSlide
   ( -title      => 'MACL Schutztypen'
   , -active     => 0
   , -main	 => <<MAIN
<UL>
<LI>DENY
<LI>READ
<LI>APPEND
<LI>WRITE
</UL>
MAIN
   );

$show->addSlide
   ( -title      => 'Capability Schutztypen'
   , -active     => 0
   , -main	 => <<MAIN
Z.B. folgende Capabilites
<UL>
<LI>CAP_SYS_RAWIO
<LI>CAP_SYS_CHROOT
<LI>CAP_SETUID
<LI>CAP_HIDDEN
</UL>
MAIN
   );

$show->addSlide
   ( -title      => 'Beispiel Konfiguration'
   , -active     => 0
   , -main	 => <<MAIN
<TT>lidsadm -A -s /usr/sbin/sshd -o /etc/shadow -j READ</TT>
<BR><TT>lidsadm -A -s /usr/sbin/exim -o CAP_SETUID -j GRANT</TT>
MAIN
   );

$show->run