[logs] How to log - commands and file access
David Corlette
dcorlette at novell.com
Tue Nov 13 14:01:01 PST 2007
There's also OpsWare, which is pretty heavy-duty. Haven't used it myself, but my understanding is that all system access is done through a portal that logs *everything*.
>>> On Mon, Nov 12, 2007 at 6:37 PM, in message
<D3B8F9F12D8F7D4A9147D0223EE358008F28C8 at zxch.zetron.com>, "Kurt Buff"
<KBuff at zetron.com> wrote:
> Perhaps http://sourceforge.net/projects/sudosh/ ?
>
> -----Original Message-----
> From: loganalysis-bounces at loganalysis.org
> [mailto:loganalysis-bounces at loganalysis.org]On Behalf Of
> david.bigot at devoteam.com
> Sent: Friday, November 09, 2007 00:26
> To: loganalysis at loganalysis.org
> Subject: [logs] How to log - commands and file access
>
>
>
> Hello,
>
> I want to known for a customer, how to log automatically on UNIX and Linux
> system :
> - all commands executed (in BASH, ZSH & co ...). I know but the file
> ~/.(ba)sh_history but I prefer a global file or through syslog.
> - all file access by process and username in real-time (not static) or if it's
> not possible, which process and username access to some files (or directory)
> like /etc/shadow, /data/ ...
>
> Regards,
> ----------------------------------------------------------------------
> David Bigot - Consultant sécurité
> Apogée Communications - Groupe DEVOTEAM
> 86, rue Anatole France
> 92300 Levallois-Perret
> téléphone: ()1.41.49.58.04
> email: david.bigot at apogee-com.fr
More information about the LogAnalysis
mailing list