Re: Command history log for audit trail

To: debian-security@lists.debian.org
Subject: Re: Command history log for audit trail
From: "captgoodnight captgoodnight" <captgoodnight@hotmail.com>
Date: Fri, 16 Jun 2006 09:55:24 -0800
Message-id: <[🔎] BAY113-F14B84BECF16F5A50170299B6830@phx.gbl>
In-reply-to: <[🔎] 20060616145905.GA7445@wolfden.dnsalias.net>

My First Post ;)

Check out vlogger by THC
Check out basha at freshmeat.net

I use basha here, nice and user selective.

Both work with ssh too...

--cg

From: Mike Dornberger <Mike.Dornberger@gmx.de>
To: debian-security@lists.debian.org
Subject: Re: Command history log for audit trail
Date: Fri, 16 Jun 2006 16:59:05 +0200

Hi,

On Thu, Jun 15, 2006 at 01:08:37PM -0700, prosolutions@gmx.net wrote:
> I need to set up an audit trail for all commands run on machines.  I

I'm no kernel expert, but can't processes be forked, too by calling some
kernel functions directly (I mean not by using library functions)?

I don't know if actual kernels have some kind of hook therefor. You mayneed

to write a kernel module, if not. Maybe such module is part of modern
intrusion detection systems.

Greetings,
 Mike


--
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org

with a subject of "unsubscribe". Trouble? Contactlistmaster@lists.debian.org

Reply to:

References:
- Re: Command history log for audit trail
  - From: Mike Dornberger <Mike.Dornberger@gmx.de>

Prev by Date: Re: Command history log for audit trail
Next by Date: pam_unix2 makes xscreensaver puke
Previous by thread: Re: Command history log for audit trail
Next by thread: Re: Command history log for audit trail
Index(es):
- Date
- Thread