ould be to use the call
syscall(SYS_getdents ...) in the proc/pid/fd directory.
Alternatively from kernel space one could achieve a similar behavior by
iterating through the tasks fdtable, as i have attempted to here:
https://gist.github.com/wmealing/c0836bc6a38f8f90aa0d
Colleagues of mine have poi
From: Wade Mealing
Gday,
I'm looking to create an audit trail for when devices are added or removed
from the system.
The audit subsystem is a logging subsystem in kernel space that can be
used to create advanced filters on generated events. It has partnered userspace
utilities ausearch, auditd
2 matches
Mail list logo
