Roberto Nibali wrote:
Let's pretend it's some sort of auditing ;-)
Actually, I use my keylogger (advertised above) more for "situation
reconstruction" rather than spying. When you happen to have a multi-root
environment and people "forget what they did", stuff like ttyrpld can
really be a gift compared to .bash_history (if it exists, after all).
If one needs it a bit less intrusive, she can also patch bash. A
possible solution can be found here:
http://www.drugphish.ch/patches/ratz/bash/bash-3.0-fix_1439-3.diff
But http://ttyrpld.sourceforge.net/ looks indeed interesting, however no
2.4.x support from what I can see.
Regards,
Roberto Nibali, ratz
This can be very easily circumvented if you can execute another shell
(for example your own version of bash without patch).
L.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
[Index of Archives]
[Kernel Newbies]
[Netfilter]
[Bugtraq]
[Photo]
[Stuff]
[Gimp]
[Yosemite News]
[MIPS Linux]
[ARM Linux]
[Linux Security]
[Linux RAID]
[Video 4 Linux]
[Linux for the blind]
[Linux Resources]
