Security Basics mailing list archives
Re: How to track down which commands sudoers set up?
From: ascii <ascii () katamail com>
Date: Wed, 14 Jun 2006 02:35:54 +0200
Jannis Kafkoulas wrote:
I'd like to find out what exactly any user did after they turned to superuser and when exactly each cmd was processed (in a Linux box).
grsec exec logging or manually hook into the kernel don't relay on bash history (even when chattr immutable it's a very unreliable way to track user commands) regards, Francesco 'ascii' Ongaro, http://www.ush.it/
Current thread:
- How to track down which commands sudoers set up? Jannis Kafkoulas (Jun 13)
- Re: How to track down which commands sudoers set up? James Harless (Jun 13)
- Re: How to track down which commands sudoers set up? Erin Carroll (Jun 14)
- Re: How to track down which commands sudoers set up? Isaac Perez (Jun 13)
- Re: How to track down which commands sudoers set up? Sergio Guzman Lorz (Jun 14)
- Re: How to track down which commands sudoers set up? Peter Morgan (Jun 13)
- Message not available
- Fwd: How to track down which commands sudoers set up? Stuart Howard (Jun 14)
- Message not available
- Re: How to track down which commands sudoers set up? Michael Rice (Jun 14)
- Re: How to track down which commands sudoers set up? James Harless (Jun 13)
- Re: How to track down which commands sudoers set up? Huzeyfe Onal (Jun 14)
- Re: How to track down which commands sudoers set up? jm (Jun 14)
- Re: How to track down which commands sudoers set up? ascii (Jun 14)
- Re: How to track down which commands sudoers set up? Joe Hood (Jun 14)