I want to known for a customer, how to log automatically on UNIX and Linux
system :
- all commands executed (in BASH, ZSH & co ...). I know but the file
~/.(ba)sh_history but I prefer a global file or through syslog.
- all file access by process and username in real-time (not static) or if
it's not possible, which process and username access to some files (or
directory) like /etc/shadow, /data/ ...
Regards,
----------------------------------------------------------------------
David Bigot - Consultant sécurité
Apogée Communications - Groupe DEVOTEAM
86, rue Anatole France
92300 Levallois-Perret
téléphone: ()1.41.49.58.04
email: david.bigot (at) apogee-com (dot) fr [email concealed]
<br><font size=2 face="sans-serif">Hello,<br>
<br>
I want to known for a customer, how to log automatically on UNIX and Linux
system :<br>
- all commands executed (in BASH, ZSH & co ...). I know but the file
~/.(ba)sh_history but I prefer a global file or through syslog.<br>
- all file access by process and username in real-time (not static) or
if it's not possible, which process and username access to some files (or
directory) like /etc/shadow, /data/ ...<br>
<br>
Regards,</font>
<br><font size=2 face="sans-serif">------------------------------------------------------
----------------<br>
David Bigot - Consultant sécurité<br>
Apogée Communications - Groupe DEVOTEAM<br>
86, rue Anatole France<br>
92300 Levallois-Perret<br>
téléphone: ()1.41.49.58.04<br>
email: david.bigot (at) apogee-com (dot) fr [email concealed]</font>________________________________________
_______
LogAnalysis mailing list
LogAnalysis (at) loganalysis (dot) org [email concealed]
http://www.loganalysis.org/mailman/listinfo/loganalysis
I want to known for a customer, how to log automatically on UNIX and Linux
system :
- all commands executed (in BASH, ZSH & co ...). I know but the file
~/.(ba)sh_history but I prefer a global file or through syslog.
- all file access by process and username in real-time (not static) or if
it's not possible, which process and username access to some files (or
directory) like /etc/shadow, /data/ ...
Regards,
----------------------------------------------------------------------
David Bigot - Consultant sécurité
Apogée Communications - Groupe DEVOTEAM
86, rue Anatole France
92300 Levallois-Perret
téléphone: ()1.41.49.58.04
email: david.bigot (at) apogee-com (dot) fr [email concealed]
<br><font size=2 face="sans-serif">Hello,<br>
<br>
I want to known for a customer, how to log automatically on UNIX and Linux
system :<br>
- all commands executed (in BASH, ZSH & co ...). I know but the file
~/.(ba)sh_history but I prefer a global file or through syslog.<br>
- all file access by process and username in real-time (not static) or
if it's not possible, which process and username access to some files (or
directory) like /etc/shadow, /data/ ...<br>
<br>
Regards,</font>
<br><font size=2 face="sans-serif">------------------------------------------------------
----------------<br>
David Bigot - Consultant sécurité<br>
Apogée Communications - Groupe DEVOTEAM<br>
86, rue Anatole France<br>
92300 Levallois-Perret<br>
téléphone: ()1.41.49.58.04<br>
email: david.bigot (at) apogee-com (dot) fr [email concealed]</font>________________________________________
_______
LogAnalysis mailing list
LogAnalysis (at) loganalysis (dot) org [email concealed]
http://www.loganalysis.org/mailman/listinfo/loganalysis
[ reply ]