On Sat, Nov 13, 2004 at 09:54:49AM +0100, Jaromir Dolecek wrote:
> This might indeed be useful. I had a look into this, and it seems
> this could easily be implemented with one condition in
> init_sysctl.c:sysctl_doeproc(), plus some sysctl machinery
> to export setting to userland.

There is a PR with patch, IIRC.

[snooping arbitrary ttys]
> This also seems useful. I think it wouldn't be too hard to implement
> using some 'intercept' hook in tty layer.

This also would be a wonderfull tool for an intruder once he is in and
has root. Not much to loose then, you might say, but think of a DMZ shell
host where road warriors jump through and forward to something inside.

This means we would be able to watch the decrypted data stream on a pty
between sshd and the users login shell, right?

It does ring some data-privacy bells ;-)

Martin