From owner-freebsd-questions@FreeBSD.ORG Tue Jun 17 12:36:42 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8EE7837B401 for ; Tue, 17 Jun 2003 12:36:42 -0700 (PDT) Received: from freshaire.wiz.com (freshaire.wiz.com [66.143.183.129]) by mx1.FreeBSD.org (Postfix) with ESMTP id CEA2543FA3 for ; Tue, 17 Jun 2003 12:36:41 -0700 (PDT) (envelope-from marc@wiz.com) Received: from freshaire.wiz.com (localhost [127.0.0.1]) by freshaire.wiz.com (8.12.6/8.12.6) with ESMTP id h5HJaeC4006425 for ; Tue, 17 Jun 2003 14:36:41 -0500 (CDT) (envelope-from marc@freshaire.wiz.com) Received: (from marc@localhost) by freshaire.wiz.com (8.12.6/8.12.6/Submit) id h5HJae1h006424 for freebsd-questions@freebsd.org; Tue, 17 Jun 2003 14:36:40 -0500 (CDT) Date: Tue, 17 Jun 2003 14:36:40 -0500 From: Marc Wiz To: FreeBSD Questions Message-ID: <20030617193640.GB6281@freshaire.wiz.com> References: <200306171101.35080.rohitvis@rogers.com> <3EEF6CDD.7010109@mac.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3EEF6CDD.7010109@mac.com> User-Agent: Mutt/1.4i Subject: Re: Keylogger For FreeBSD X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Jun 2003 19:36:42 -0000 On Tue, Jun 17, 2003 at 03:32:45PM -0400, Chuck Swiger wrote: > Rohit wrote: > >I'd like to write a keylogger for my freebsd box. Something that would log > >all keyboard activity on my pc. I have peeked at the keyboard files in the > >kernel. However, if someone could point me int the right direction... it > >will be greatly appreciated. > > At the shell level, something like the history command or 'script' is > probably more useful. However, for a starting point maybe see > /usr/src/sys/dev/kbd. In one of the older BSD (as in from UC Berkeley) releases (I think it was 4.2) there was an ioctl that would let you spy on a tty. I don't remember the ioctl params or name of the ioctl parm but it was there. If it's not in the current source (FreeBSD source) you hopefully should be able to find the BSD sources somewhere on the net. Marc -- Marc Wiz marc@wiz.com Yes, that really is my last name.