From 56df953f170a3ae89c3bb8b09ca4dacd40554d0f Mon Sep 17 00:00:00 2001
From: Gerard Wagener <gerard@ncr0.(none)>
Date: Sun, 10 Jan 2010 20:11:03 +0100
Subject: [PATCH] Some random notes

---
 README.gerard | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 README.gerard

diff --git a/README.gerard b/README.gerard
new file mode 100644
index 00000000000..06b35dc3983
--- /dev/null
+++ b/README.gerard
@@ -0,0 +1,24 @@
+Adaptive Honeypot Alternative  -- AHA
+
+This should become an adaptive honeypot framework
+
+Some kernel development notes
+* Inside kernel space no variables in user space can be directly accessed
+* strncpy_from_user and similar functions can be used to copy data
+    * This should not be done in critical sections; page faults may occour
+      and wonderfull kernel deadlocks emerge
+
+* Honeypot support is already in the kernel (UML)
+    * Compile kernel including hppfs support
+    * Inside the UML directory containing root_fs create a proc directory,
+      denoted proc' here
+    * Inside the UML mount proc file system with
+        mount none /proc -t hppfs
+    * Everything is normal inside the proc filesystem. However in the proc
+      proc' entries can be overriden, i.e cmdline contains foo bar
+    * If a subdirectory (d) in proc' contains an empty file called remove
+      then (d) is not shown inside the UML
+
+TODO
+PAGE_SIZE constant -> allocate efficiently buffers
+* IDEA  extend hppfs for adaption