Re: Exec logging, FreeBSD Kernel Module.
From: nathan@corp.wac.com
Date: 07/17/01
- Next message: D. W. Piper: "Another question on IPFW Rule -1"
- Previous message: Andrew R. Reiter: "Re: Exec logging, FreeBSD Kernel Module."
- In reply to: Steven Ames: "Re: Exec logging, FreeBSD Kernel Module."
- Next in thread: Jeff Ito: "Re: Exec logging, FreeBSD Kernel Module."
- Reply: Jeff Ito: "Re: Exec logging, FreeBSD Kernel Module."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: <nathan@corp.wac.com> To: <freebsd-security@freebsd.org> Date: Tue, 17 Jul 2001 12:53:34 -0700
got everything working with watch, i guess i've been to drunk to notice that
i
didn't do a damn MAKEDEV.. sorry about that. i figured i did. =\
have a great day.
----- Original Message -----
From: "Steven Ames" <steve@virtual-voodoo.com>
To: <nathan@corp.wac.com>; "jono@networkcommand.com" <jono@microshaft.org>
Cc: <freebsd-security@FreeBSD.ORG>
Sent: Tuesday, July 17, 2001 12:08 PM
Subject: Re: Exec logging, FreeBSD Kernel Module.
> Sure. However you have to have 'snp' devices configured into the kernel.
>
> device snp
>
> In 4.X that may read something more like:
>
> device snp 1
>
> I don't remember.
>
> -Steve
>
> ----- Original Message -----
> From: <nathan@corp.wac.com>
> To: "jono@networkcommand.com" <jono@microshaft.org>
> Cc: <freebsd-security@FreeBSD.ORG>
> Sent: Tuesday, July 17, 2001 2:11 PM
> Subject: Re: Exec logging, FreeBSD Kernel Module.
>
>
> >
> > to reply to your last message.. i've never been able to get watch to
work
> > properly. has anyone else?
> >
> >
> > ----- Original Message -----
> > From: "Jon O ." <jono@microshaft.org>
> > To: "Artur Meski" <glash@freebsd.net.pl>
> > Cc: <freebsd-security@FreeBSD.ORG>
> > Sent: Tuesday, July 17, 2001 10:42 AM
> > Subject: Re: Exec logging, FreeBSD Kernel Module.
> >
> >
> > > See below:
> > >
> > >
> > > # man watch
> > > WATCH(8) FreeBSD System Manager's Manual
> > WATCH(8)
> > >
> > > NAME
> > > watch - snoop on another tty line
> > >
> > > SYNOPSIS
> > > watch [-ciotnW] [tty]
> > >
> > > DESCRIPTION
> > > Watch allows the superuser to examine all data coming through a
> > specified
> > > tty. Watch writes to standard output.
> > >
> > >
> > >
> > > # man snp
> > > SNP(4) FreeBSD Kernel Interfaces Manual
> > SNP(4)
> > >
> > > NAME
> > > snp - tty snoop interface
> > >
> > > SYNOPSIS
> > > #include <sys/snoop.h>
> > >
> > >
> > >
> > >
> > > On 17-Jul-2001, Artur Meski wrote:
> > > > Hi.
> > > >
> > > > I'm looking for FreeBSD Kernel Module, which will log all executed
> > commands
> > > > by users. Could somebody help me?
> > > >
> > > > --
> > > > Artur Meski [glash@freebsd.net.pl] [tel +48606494552]
> > [http://glash.black.pl/]
> > > >
> > > > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > > > with "unsubscribe freebsd-security" in the body of the message
> > >
> > > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > > with "unsubscribe freebsd-security" in the body of the message
> >
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-security" in the body of the message
> >
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: D. W. Piper: "Another question on IPFW Rule -1"
- Previous message: Andrew R. Reiter: "Re: Exec logging, FreeBSD Kernel Module."
- In reply to: Steven Ames: "Re: Exec logging, FreeBSD Kernel Module."
- Next in thread: Jeff Ito: "Re: Exec logging, FreeBSD Kernel Module."
- Reply: Jeff Ito: "Re: Exec logging, FreeBSD Kernel Module."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
