PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Re: A logging root shell

From: Kevin Shaw <kevin.lee.shaw () gmail com>
Date: Tue, 22 Nov 2011 15:28:06 -0500
Adeptus Mechanicus heheh I just started reading a new Warhammer 40,000
novel - first thing that popped in my mind.
On Nov 22, 2011 1:18 AM, "Matt Erasmus" <matt.erasmus () gmail com> wrote:


Howdy

On 21 Nov 2011, at 6:03 PM, Nils wrote:


I´m looking into solutions to comply with PCI DSS requirement 10.2.2:

 (Logging: All actions taken by any individual with root or administrative
privileges)  especially on Linux systems.

Therefore I´ve checked for ways to provide a shell which is logging all

actions taken.

I stumbled upon stuff like:
mkfifo myfifo; logger -f myfifo & script -f myfifo
rootsh
sudoshell (ss)

What are your experiences in this realm?
Best solution would be something done with on-board means or a provided

package of the Linux distribution, in this case Debian.

I've had great success with this..

http://www.adeptus-mechanicus.com/codex/histsys/histsys.html

It's not a clean system, but it'll do what you need.

./matt
email: matt.erasmus () gmail com
blog: http://www.zonbi.org
twitter: @0xznb

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com


_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
Previous By Date Next
Previous By Thread Next

Current thread: