Date: Tue, 17 Jul 2001 13:06:42 +0200 From: Marco Molteni <molter@tin.it> To: Artur Meski <glash@freebsd.net.pl> Cc: freebsd-security@freebsd.org Subject: Re: Exec logging, FreeBSD Kernel Module. Message-ID: <20010717130642.A3183@cobweb.example.org> In-Reply-To: <20010717123422.A97994@rapid.black.pl>; from glash@freebsd.net.pl on Tue, Jul 17, 2001 at 12:34:22PM %2B0200 References: <20010717123422.A97994@rapid.black.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2001-07-17, Artur Meski wrote:
> Hi.
>
> I'm looking for FreeBSD Kernel Module, which will log all executed commands
> by users. Could somebody help me?
Artur, have a look at this.
Marco
--------- begin forwarded message
Date: Wed, 11 Jul 2001 01:40:17 +0200 (CEST)
From: Andrzej Bialecki <abial@webgiro.com>
To: freebsd-hackers@freebsd.org
Subject: [ANNOUNCE] SPY-1.1 - syscall monitoring kernel module
Hi,I just uploaded an updated version of the SPY, which is a kernel module
that allows to selectively monitor and/or block execution of any
syscalls. This version works on relatively current -CURRENT (after the
struct proc changes). You can get it from:
http://people.freebsd.org/~abial
See also the detailed description there.
I should be able also to provide a version for 4-STABLE soon, depending on
my time and availability of the machine...
Enjoy!
--
Andrzej
// ----------------------------------------------------------------
// Andrzej Bialecki <abial@webgiro.com>, Chief System Architect
// WebGiro AB, Sweden (http://www.webgiro.com)
// ----------------------------------------------------------------
// <abial@freebsd.org> FreeBSD developer (http://www.freebsd.org)
-------------- end forwarded message
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010717130642.A3183>