PaulDotCom mailing list archives
Re: A logging root shell
From: Matt Erasmus <matt.erasmus () gmail com>
Date: Tue, 22 Nov 2011 07:50:04 +0200
Howdy On 21 Nov 2011, at 6:03 PM, Nils wrote:
I´m looking into solutions to comply with PCI DSS requirement 10.2.2: (Logging: All actions taken by any individual with root or administrative privileges) especially on Linux systems. Therefore I´ve checked for ways to provide a shell which is logging all actions taken. I stumbled upon stuff like: mkfifo myfifo; logger -f myfifo & script -f myfifo rootsh sudoshell (ss) What are your experiences in this realm? Best solution would be something done with on-board means or a provided package of the Linux distribution, in this case Debian.
I've had great success with this.. http://www.adeptus-mechanicus.com/codex/histsys/histsys.html It's not a clean system, but it'll do what you need. ./matt email: matt.erasmus () gmail com blog: http://www.zonbi.org twitter: @0xznb _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- A logging root shell Nils (Nov 21)
- Re: A logging root shell Owen Connolly (Nov 21)
- Re: A logging root shell Champ Clark III [Quadrant] (Nov 21)
- Re: A logging root shell Matt Erasmus (Nov 21)
- Re: A logging root shell Kevin Shaw (Nov 22)
- A logging root shell Nils (Nov 22)
- Re: A logging root shell Champ Clark III [Quadrant] (Nov 22)
- Re: A logging root shell Jim Halfpenny (Nov 22)
- Re: A logging root shell Jon Schipp (Dec 05)
- Re: A logging root shell Edward Frye (Dec 05)
- Re: A logging root shell Kevin Shortt (Dec 13)
- Re: A logging root shell Champ Clark III [Quadrant] (Nov 22)
- Re: A logging root shell Owen Connolly (Nov 21)
- <Possible follow-ups>
- Re: A logging root shell Geordy Rostad (Nov 22)
- Re: A logging root shell Mike Harris (Nov 22)
- Re: A logging root shell Nils (Nov 22)