Neil Parker wrote:
> No. The closest you can get is probably to run your suspicious software
> under the control of strace or something similar. This will report all
> system calls made by the process, including attempts to open files. (I
> believe this was exactly how skype's suspicious behavior was discovered.)
What, exactly, is suspicious about reading /etc/passwd?
/etc/passwd is used to map numeric user IDs to user names.
It's also used to map user IDs and names to full names.
Does Skype ever display your name or your username?
--
Bob Miller K<bob>
[EMAIL PROTECTED]
_______________________________________________
EUGLUG mailing list
[email protected]
http://www.euglug.org/mailman/listinfo/euglug
