[LC++]File Monitoring under Linux
Krishna Monian
k_tutorials at yahoo.com
Fri Jul 9 03:58:02 UTC 2004
Hi All,
I am in the process of writing a file logging utility
under Linux that monitors every file that is accessed
(read, create, delete, failed access). It is something
similar to the FileMon app on the sysinternals site.
The way I am thinking of doing this is by rerouting
system calls and performing the necessary logging.
However the sysinternals site mentioned that this
method will not work under the 2.6 kernel.
Are there any other ways to go about doing this? As of
now I do not need compatibility with the 2.6 kernel,
but might need it in the future. It would be nice if I
could write something that was compatible with future
releases.
If not upto which kernel version will the system call
hook method work? Will it be backward compatible and
if so upto which version?
Thanks
Krishna
__________________________________
Do you Yahoo!?
Yahoo! Mail Address AutoComplete - You start. We finish.
http://promotions.yahoo.com/new_mail
More information about the tuxCPProgramming
mailing list