Don't forget logging the environment as well as the command line. Many
programs will treat environment variables as arguments.
adrian
--
Adrian Chadd - [EMAIL PROTECTED]
___
freebsd-hackers@freebsd.org mailing list
On Mon, 30 Oct 2006, Dave Clausen wrote:
I'm a n00b to the FreeBSD kernel and I'm trying to log all commands run on
the command line from within the kernel for security purposes by loading a
kernel module which redefines execve(). I've successfully created the KLD
and have it working, but
If I'm not mistaken pjd@ has written similar module which is called
lrexec for RELENG_4 and RELENG_5. See his web site.
Also recently rwatson@ enabled audit support in RELENG_6 and CURRENT,
though I don't know yet whether it can log arguments.
Great, lrexec was exactly what I was looking
Hello list,
I'm a n00b to the FreeBSD kernel and I'm trying to log all commands run
on the command line from within the kernel for security purposes by
loading a kernel module which redefines execve(). I've successfully
created the KLD and have it working, but am having problems saving the
Dave Clausen wrote:
Hello list,
I'm a n00b to the FreeBSD kernel and I'm trying to log all commands run
on the command line from within the kernel for security purposes by
loading a kernel module which redefines execve(). I've successfully
created the KLD and have it working, but am having
Dave Clausen wrote:
Hello list,
I'm a n00b to the FreeBSD kernel and I'm trying to log all commands
run on the command line from within the kernel for security purposes
by loading a kernel module which redefines execve(). I've
successfully created the KLD and have it working, but am having
6 matches
Mail list logo