Date: Thu, 17 Oct 2002 18:13:24 -0400 (EDT) From: Ramkumar Chinchani <rc27@cse.Buffalo.EDU> To: hackers@freebsd.org Subject: tracing exec system call Message-ID: <200210172213.g9HMDO423357@pollux.cse.buffalo.edu>
next in thread | raw e-mail | index | archive | help
What would be the best way to *capture* the execv system call at its entry point from user space? ptrace()? What would be a good way to inspect the command line args to execv *after* the path, etc., has been resolved? This is useful if one wants to monitor a process and all the system calls it makes and then disallow a few of them if suspicious. Thanks. -Ram To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200210172213.g9HMDO423357>