I have tried to trace system call using C language.

I would like to detect privilege escalation through traceing system call.
Although freebsd announce the patch of telnet demon to remove malicious access 
to esaclate privilege, I would like to implement the detecting program.

My idea is if I detect the change of uid of process then I can recongnize the 
privilege escalation.

I would like to get the program guide or document of kernel program of freebsd.


_______________________________________________ mailing list
To unsubscribe, send any mail to ""

Reply via email to