Date: Sun, 5 Apr 2009 02:30:53 -0500 (CDT) From: <hjung20@illinois.edu> To: freebsd-questions@FreeBSD.org Subject: I would like to know about tracing system call in FreeBSD. Message-ID: <20090405023053.BSQ12123@expms2.cites.uiuc.edu>
next in thread | raw e-mail | index | archive | help
Dear, I have tried to trace system call using C language. I would like to detect privilege escalation through traceing system call. Although freebsd announce the patch of telnet demon to remove malicious access to esaclate privilege, I would like to implement the detecting program. My idea is if I detect the change of uid of process then I can recongnize the privilege escalation. I would like to get the program guide or document of kernel program of freebsd. Sincere.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090405023053.BSQ12123>