Vulnerability Development mailing list archives
Re: History Files
From: 11a () GMX NET (Bluefish)
Date: Mon, 17 Apr 2000 13:42:24 +0200
Uhm, I would like to raise another question: what kind of risks are you ready to take to log keystrokes? Logging keystrokes to another box seems like a rather advance thingy to do securely, won't you risk making SSH far less secure? Even assuming you do encryption, will the authentication be done correctly? I feel rather sure that I don't want to run a sshd hacked by a thirdparty. If you aren't using sshd, it's another matter. You've allready chosen a weak security level and the extended logging won't affect your security standard much.
What you're essentially talking about is keystroke logging. This should _not_ be done at the shell level. Hack your telnetd, rexecd, rshd, sshd (etc.) to log keystrokes to a file. To another box if you're really paranoid.
..:::::::::::::::::::::::::::::::::::::::::::::::::.. http://www.11a.nu || http://bluefish.11a.nu eleventh alliance development & security team
Current thread:
- Re: History Files, (continued)
- Re: History Files Bluefish (Apr 19)
- Re: History Files Dragos Ruiu (Apr 15)
- Re: History Files Crispin Cowan (Apr 15)
- Re: History Files Seth R Arnold (Apr 15)
- Re: History Files Omachonu Ogali (Apr 15)
- Re: History Files Corwin J. Grey (Apr 15)
- Re: History Files Corwin J. Grey (Apr 15)
- Re: History Files Omachonu Ogali (Apr 15)
- Re: History Files Corwin J. Grey (Apr 15)
- Re: History Files Gert-Jan Hagenaars (Apr 16)
- Re: History Files Bluefish (Apr 17)
- Re: History Files Omachonu Ogali (Apr 15)
- Re: History Files Michael Jennings (Apr 15)
- Re: History Files Mark Rafn (Apr 16)
- Alternative to historyfile logging. Joel Eriksson (Apr 17)
- Re: History Files Joel Eriksson (Apr 17)
- Re: History Files spiff (Apr 18)
- Re: History Files Corwin J. Grey (Apr 16)
- Re: History Files Michael Jennings (Apr 16)
- Cooments on the dvwssr.dll vulnerability threads Iván Arce (Apr 17)
- Re: History Files Senior Systems Administrator - Kris W. (Apr 16)