Hi Mathieu,

> Here is a patch that add a netlink virtual interface.
> Through a hook in af_netlink.c every packets are duplicated and sent to
> that interface. Thus userspace sniffers can capture them.

Looks like an interesting direction.

Do you think, that such approach may be extended to unix-domain
traffic as well, or there are other ways to sniff such packets?

Security people will cry, but sometimes we need good troubleshooting
means in userland.

Sincerely,
-----------------------------------------------------------------------
Robert Iakobashvili, coroberti at gmail dot com
            NAVIGARE NECESSE EST
----------------------------------------------------------------------
-
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Reply via email to