Re: Magic Lantern

From: Richard B. Johnson (root@chaos.analogic.com)
Date: Wed Nov 28 2001 - 10:48:56 EST


On Wed, 28 Nov 2001, Eric Weigle wrote:

> > > "Richard B. Johnson" <root@chaos.analogic.com> writes:
> > > > Are there currently any kernel hooks to support Magic Lantern?
> > > > Basically, a "tee" to capture all network packets and pass them
> > > > on to a filtering task without affecting normal network activity.
> > > > It's like `tcpdump`, but allows packets to be inserted into the
> > > > output queue as well without affecting normal network activity.
> > >
> > > The af_packet module can read and write raw ethernet frames.
> The af_packet module may also be fairly inefficient. If you need performance
> over, say, a gigabit link, you may have trouble. I last used it one of the
> earlier 2.4 series (2.4.8 I think) with the Acenic Tigon II gigE copper
> cards to implement a network flooder; At that time a simple unoptimized loop
> sending raw ethernet packets maxed out at at around 80Mbps, while the same loop
> sending UDP packets maxed out at around 400. This may have been fixed by now,
> I don't know... Just a warning.
>
> -Eric

Okay. I don't think that performance will be a problem in the near
future. As you no doubt know, the DOJ is "requiring" that these
taps be inserted into Operating Systems so that they can access
computers, of course always in direct correspondence with a
wiretap order (if you believe that, I've got a bridge to sell).

Information is that part of M$ agreement with DOJ was to insert
these taps into their OS. In due course, we will have to counter
this by emulation, i.e., always return a nice new, never touched
distribution disk when queried for a directory <grin>, but
presently, if there are "hooks" for "future enhancements", the
DOJ can't refuse to allow the sale or distribution of an OS
as is now proposed.

Once the DOJ actually reads the Constitution, this problem may
go away altogether, but presently the knee-jerk reaction from 9/11
is to violate everybody's computers!

Cheers,
Dick Johnson

Penguin : Linux version 2.4.1 on an i686 machine (799.53 BogoMips).

    I was going to compile a list of innovations that could be
    attributed to Microsoft. Once I realized that Ctrl-Alt-Del
    was handled in the BIOS, I found that there aren't any.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Fri Nov 30 2001 - 21:00:31 EST