Best linux filesystem filter option?
I have chosen RedirFS Redirecting Filesystem Framework.
- similar to windows minifilter drivers in many ways
- simple enough and featurefull
- has examples of programs
- nice docs (but scattered)
Filter df -h to only show 'Mounted on' part
df --output=target
If you need mount targets, you can also look at findmnt. It has tons of formatting options, the list you want can be done with
$ findmnt --real -O TARGET
How to trap file access attempts with a filter driver (kernel) and offer dialog to allow/deny (user)?
You (a.k.a. I) have pretty much enumerated the possibilities. Either poll the way FileMon does, or pass an event. Passing the event is probably a bit more error prone, and if you aren't a threading guru then there's probably more chance for error. But if you tend to make lots of mistakes then device drivers may not be for you...skydiving might be a poor choice too.
I'll offer taking a look at this project, but please note the disclaimers in the README. (It is only a test and investigation):
https://github.com/hostilefork/CloneLocker
And yes, to the extent that Microsoft and their driver model is to be something one worries about, miniFilters are the better choice these days.
Related Topics
How to Fetch The Logical Name of a Nic Card Given The Ip Address Associated with It
Logging Memory Access Footprint
How to Make Libusb Library Visible to Another Program
Getting "Permission Denied" on Dirname and Basename
Source Bashrc Doesn't Work in Cron
Cmake: Don't Set Rpath for a Single Library Used in Link
Emacs/Xterm Color Annoyance on Linux
Does Chrome 12 Really Support CSS 3D Transforms? Including on Linux
Inotify Fd - Why Is The Limit Per User Id and Not Per Process
How Does Linux Kernel Prevents The Bios System Calls
Installing New Version of Python on Debian Linux Server
Mongodb (Result= Signal, Code = Killed, Signal = Ill
How to Tell Linux to Keep a Page and Not Evict It
Authenticating Gtk App to Run with Root Permissions