[Sunhelp] logging
Mike Gracy (Ghost Rider)
sunhelp at sunhelp.org
Tue Oct 31 16:56:18 CST 2000
Almost sounds like what you need is a key logger.
-----Original Message-----
From: The XUMA Ghostrider mailing list
[mailto:GHOSTRIDER at LISTSERV.XUMA.COM]On Behalf Of Dale Ghent
Sent: Tuesday, October 31, 2000 11:09 AM
To: GHOSTRIDER at LISTSERV.XUMA.COM
Subject: Re: [Sunhelp] logging
On Tue, 31 Oct 2000, Magnus Abrante wrote:
| What more exactly do you want to log? Just commands?
Well, full command lines (ie, all arguments). Like in the example I gave
earlier, I'd like to know what the user did with the command. If root ran
"vi /etc/passwd", I'd like to see that whole command line logged, rather
than just "vi" as it is now.
The process accounting functionality, to me, has always been geared
towards the performance/resource monitoring of a particular server. I'm
interested in using it for two different reasons: Security monitoring, and
user accountability.
c2audit does this, but only for processes parented by init and for users
logged in on /dev/console... not for users using ptys.
/dale
_______________________________________________
SunHELP maillist - SunHELP at sunhelp.org
http://www.sunhelp.org/mailman/listinfo/sunhelp
More information about the SunHELP
mailing list