Remnant: The Proc Connector and Socket Filters
Remnant: The Proc Connector and Socket Filters
[Kernel] Posted Feb 10, 2011 14:26 UTC (Thu) by corbet
Scott James Remnant has posted a
surprisingly detailed description of how to use the process connector
to get process events from the kernel, combined with use of socket filters
to reduce the information flow. "As I mentioned before, the proc
connector is built on top of the generic connector and that itself is on
top of netlink so sending that subscription message also involves embedded
a message, inside a message inside a message. If you understood
Christopher Nolan's Inception, you should do just fine.
"