Sebek2 - A Kernel-based Data Capture Tool

LogError writes "Sebek is a piece of code the lives entirely in kernel space and records either some or all data accessed by users on the system. This paper is a detailed discussion of Sebek, how it works and its value."

Re:weird name

[Tumbleweed]

Polacks...Vulcans...same thing. :)

Re:Palladium can fix this.

[ScrewMaster]

Sure, and how much do you want to bet the the people who end up knowing all the keys aren't the same ones that actually own the hardware?

I have another, far more entertaining solution. Let the government post an official list of individuals and companies that are considered "persona non grata" in cyberspace. Call it the "Internet Black List" (IBL.) At a minimum this should include known spammers, their providers, and the RIAA. Now, under my plan, being on this list would legally entitle anyone to attack, DDOS, spam, ping-flood or generally screw around with your Internet connection and your internal systems. And furthermore, let it be known that the IP addresses on that list are NOT restricted to the continental United States. If China, Korea, Taiwan, India, Russia, whoever, don't get their act together and stop the crap flowing to us from their nations, we will turn everyone from a two-bit script kiddie to big-league Black Hats loose on them, and will idemnify and immunize the attackers from any consequences of their actions. I predict that within a very short time Palladium, and anything like it, will be unneccesary and unjustifiable. And, if nothing else, it will keep all the real jerks on the Internet to busy to bother the rest of us.