Re: Logging Traffic by user @ OpenSSH 3.8.1

From: Hardik Dalwadi (hardik_at_deeproot.co.in)
Date: 09/06/05

Next message: Alexey G. Khramkov: "Re: help? ssh connect w/ DSA pubkey auth keeps asking for passphrase; w/ RSA pubkey auth, all is OK"

Previous message: Martín: "OpenSSH 4.2 and OpenBSD 3.5"
In reply to: Miro Dietiker, MD Systems: "Logging Traffic by user @ OpenSSH 3.8.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 06 Sep 2005 10:18:00 +0530
To: secureshell@securityfocus.com

Miro Dietiker, MD Systems wrote:
> Hi!
>
> For a productive environment we are currently logging via iptables all
> SSH traffic for specific machines. Due to the reason, that multiple
> customers use SSH on that machine, we need to log the traffic amount of
> each user.
> Before, data transfer have most been done via ftp and www by our
> customers. We like to provide ssh/sftp access or data tunnelling for all
> customers on a shared machine, where the measurement of the usage per
> customer seems not possible from my point of view. And in the same
> moment all is out of controle!
Yes you are right, It's not possible to log the traffic of per user on lan.
for that you need trasport layer firewall like socks. IPTABLES are use for
implementing network layer firewall. I am using IPTRAF for logging traffic
but it's not possible to log traffic in IPTRAF for per user bassis.

Next message: Alexey G. Khramkov: "Re: help? ssh connect w/ DSA pubkey auth keeps asking for passphrase; w/ RSA pubkey auth, all is OK"

Previous message: Martín: "OpenSSH 4.2 and OpenBSD 3.5"
In reply to: Miro Dietiker, MD Systems: "Logging Traffic by user @ OpenSSH 3.8.1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]