bbs.cooldavid.org Git - net-next-2.6.git/commit

author	Steve Grubb <sgrubb@redhat.com>
	Sat, 3 Dec 2005 13:39:35 +0000 (08:39 -0500)
committer	Al Viro <viro@zeniv.linux.org.uk>
	Mon, 20 Mar 2006 19:08:55 +0000 (14:08 -0500)
commit	5bdb98868062c1b14025883049551af343233187
tree	1f15c49cf4c9535bb3897d5fedbe78b3a7651410	tree \| snapshot (tar.bz2 tar.gz zip)
parent	a6c043a887a9db32a545539426ddfc8cc2c28f8f	commit \| diff

[PATCH] promiscuous mode

Hi,

When a network interface goes into promiscuous mode, its an important security
issue. The attached patch is intended to capture that action and send an
event to the audit system.

The patch carves out a new block of numbers for kernel detected anomalies.
These are events that may indicate suspicious activity. Other examples of
potential kernel anomalies would be: exceeding disk quota, rlimit violations,
changes to syscall entry table.

Signed-off-by: Steve Grubb <sgrubb@redhat.com>
Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>

include/linux/audit.h		diff \| blob \| blame \| history
net/core/dev.c		diff \| blob \| blame \| history