Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

AW: User Tracking & Audit on Unix Systems

From: Meidinger Chris <chris.meidinger () badenit de>
Date: Thu, 7 Aug 2003 08:25:53 +0100 
try the acct (sometimes called pacct) software set

badenIT GmbH
System Support
 
Chris Meidinger
Tullastrasse 70
79108 Freiburg

______________

Es gibt 10 arten von Menschen auf dem Planeten, 
welche die Binär verstehen, und welche die es nicht tun.



-----Ursprüngliche Nachricht-----
Von: Shane Lahey [mailto:s.lahey () roadrunner nf net]
Gesendet: Wednesday, August 06, 2003 10:22 PM
An: ocd () mushrappa org; security-basics () securityfocus com
Betreff: RE: User Tracking & Audit on Unix Systems





-----Original Message-----
From: Ozgur C. Demir [mailto:ocd () mushrappa org]
Sent: Tuesday, August 05, 2003 3:30 PM
To: security-basics () securityfocus com
Subject: User Tracking & Audit on Unix Systems

Hello people,
I would like to learn if is there a tool to track a user when he/she logs
on

man lastlog


an unix server (say Linux), it mush be including which commands he/she
enter, which files he/she accessed even changed..so on... it s a kind of
session recorder maybe. I have tried "GNU session" but it is possible to
escape from this tool and of course .bash_history is not enough. I am
thinking about NSA's SELinux but it is more than enough, it is complicated
and may be incompatible with my millions of applications.

man accton
man lastcomm
man sa



PS: Maybe some of you might be know, there was a tool in IBM VM/ESA
operating system called session, something like it is exactly what i am
looking for.


Thank you in advance

---
Ozgur C. Demir


--------------------------------------------------------------------------
-
--------------------------------------------------------------------------
--




---------------------------------------------------------------------------
----------------------------------------------------------------------------

---------------------------------------------------------------------------
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: