Re: root shell auditing

---

• From: Hari Sekhon <hpsekhon@xxxxxxxxxxxxxx>
• Date: Wed, 06 Aug 2008 19:16:25 +0100

---

cybergod wrote:

You can implement a simple system by using /usr/bin/script utility and
pipe it a fifo on a NFS share for example. You need to establish a
policy of course because there's an easy way to go around it. For more
info and example read "man script".

Hope this helps,

Konstantin Ivanov

Yes I know this one. The problems with all of these little hacks is that they are easily circumventable.

GrSecurity's Exec logging is something I'm investigating right now... I've used it's chdir logging on a chrooted server of mine and it's quite thorough.

-h

--
Hari Sekhon

---

• Follow-Ups:
  • RE: root shell auditing
    • From: Christian Lete

• References:
  • Re: root shell auditing
    • From: Hari Sekhon
  • Re: root shell auditing
    • From: Philip Turner
  • Re: root shell auditing
    • From: Hari Sekhon

• Prev by Date: Re: root shell auditing
• Next by Date: Re: root shell auditing
• Previous by thread: Re: root shell auditing
• Next by thread: RE: root shell auditing
• Index(es):
  • Date
  • Thread

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(17)