Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

honeypots logo Honeypots mailing list archives

Re: sebek & linux 2.6.x
From: Edward Balas <ebalas () iu edu>
Date: Tue, 19 Apr 2005 17:20:32 -0500
Jonas Yorg wrote:
so looking at the page there doesn't seem to be any sebek availible for the 2.6.x kernel. Is that because they stopped exporting the sys_call_table in 2.6? If so, sebek was spawned from adore, so why doesn't it just use adore-ng's 2.6 methods? If not could someone please explain? 

thanks

Jonas

Jonas,
Rome wasn't built in a day ;-) We have been working on a version 3 of Sebek which goes beyond just sys_read monitoring for the 2.4 kernel and Ill be adding a port for the 2.6 kernel in the next few months. This new version is being developed hand in hand with the "roo" Honeywall which is in beta. A fair amount of work is currently going into the newest version of the Honeywall, once it is a bit more stable, Ill crank out 
the 2.6 port.


Edward

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]