Date: Mon, 31 Jan 2005 12:49:08 -0800 From: "Steven Alexander" <alexander.s@mccd.edu> To: "H. S." <security@revolutionsp.com>, <freebsd-hackers@freebsd.org> Subject: RE: syscall list Message-ID: <C246F099C408FE429BCEE7473E2DDC603E21C2@internet1.mccd.edu>
next in thread | raw e-mail | index | archive | help
Syscalls are talked about in section 2.7 =20 Forensic Analysis of a Live Linux System, Part Two =09 http://www.securityfocus.com/infocus/1773 =20 This article is more in depth on this point; it's by the same author. =20 Detecting Kernel-level Compromises With gdb=20 http://www.securityfocus.com/infocus/1811 =20 I hope this helps. =20 Steven -----Original Message----- From: H. S. [mailto:security@revolutionsp.com]=20 Sent: Monday, January 31, 2005 12:01 PM To: freebsd-hackers@freebsd.org Subject: syscall list =09 =09 Hi, =09 I don't remember how to extract the syscall list from the kernel. There was an article some time ago about this, and checking the syscall address to make sure it was not changed in the kernel. Could anyone point me to this article? I've tried to google around but didn't find it. =09 Best Regards =09 _______________________________________________ freebsd-hackers@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-hackers To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org" =09 =09 ______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email =09 ______________________________________________________________________ =09
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?C246F099C408FE429BCEE7473E2DDC603E21C2>