SecurityFocus

[logs] CanSecWest 2008 CFP (deadline Nov 30,conf Mar 26-28) and PacSec Dojo's Nov 09 2007 04:24AM
Dragos Ruiu (dr kyx net) (1 replies)

[logs] How to log - commands and file access Nov 09 2007 08:25AM
david bigot devoteam com (7 replies)

Re: [logs] How to log - commands and file access Mar 03 2008 07:24AM
Cesare (tensi mclink it)

Re: [logs] How to log - commands and file access Nov 25 2007 12:48AM
Karl Vogel (vogelke pobox com)

RE: [logs] How to log - commands and file access Nov 12 2007 11:37PM
Kurt Buff (KBuff zetron com) (1 replies)

RE: [logs] How to log - commands and file access Nov 13 2007 10:01PM
David Corlette (dcorlette novell com) (1 replies)

There's also OpsWare, which is pretty heavy-duty. Haven't used it myself, but my understanding is that all system access is done through a portal that logs *everything*.

>>> On Mon, Nov 12, 2007 at 6:37 PM, in message
<D3B8F9F12D8F7D4A9147D0223EE358008F28C8 (at) zxch.zetron (dot) com [email concealed]>, "Kurt Buff"
<KBuff (at) zetron (dot) com [email concealed]> wrote:
> Perhaps http://sourceforge.net/projects/sudosh/ ?
>
> -----Original Message-----
> From: loganalysis-bounces (at) loganalysis (dot) org [email concealed]
> [mailto:loganalysis-bounces (at) loganalysis (dot) org [email concealed]]On Behalf Of
> david.bigot (at) devoteam (dot) com [email concealed]
> Sent: Friday, November 09, 2007 00:26
> To: loganalysis (at) loganalysis (dot) org [email concealed]
> Subject: [logs] How to log - commands and file access
>
>
>
> Hello,
>
> I want to known for a customer, how to log automatically on UNIX and Linux
> system :
> - all commands executed (in BASH, ZSH & co ...). I know but the file
> ~/.(ba)sh_history but I prefer a global file or through syslog.
> - all file access by process and username in real-time (not static) or if it's
> not possible, which process and username access to some files (or directory)
> like /etc/shadow, /data/ ...
>
> Regards,
> ----------------------------------------------------------------------
> David Bigot - Consultant sécurité
> Apogée Communications - Groupe DEVOTEAM
> 86, rue Anatole France
> 92300 Levallois-Perret
> téléphone: ()1.41.49.58.04
> email: david.bigot (at) apogee-com (dot) fr [email concealed]
_______________________________________________
LogAnalysis mailing list
LogAnalysis (at) loganalysis (dot) org [email concealed]
http://www.loganalysis.org/mailman/listinfo/loganalysis

[ reply ]

Re: [logs] How to log - commands and file access Nov 13 2007 11:31PM
Matt Cuttler (mcuttler bnl gov)

Re: [logs] How to log - commands and file access Nov 12 2007 02:47PM
Mike Blomgren (mike blomgren tornado se) (1 replies)

Re: [logs] How to log - commands and file access Nov 12 2007 03:15PM
david bigot devoteam com (1 replies)

Re: [logs] How to log - commands and file access Nov 13 2007 04:07AM
Anton Chuvakin (anton chuvakin org)

Re: [logs] How to log - commands and file access Nov 09 2007 08:09PM
Anton Chuvakin (anton chuvakin org) (2 replies)

Re: [logs] How to log - commands and file access Nov 10 2007 03:49PM
James B Horwath (Jim_Horwath glic com)

Re: [logs] How to log - commands and file access Nov 10 2007 02:21AM
James Turnbull (james lovedthanlost net)

Re: [logs] How to log - commands and file access Nov 09 2007 07:38PM
Vincent Bernat (bernat luffy cx)

Re: [logs] How to log - commands and file access Nov 09 2007 07:10PM
Stephen John Smoogen (smooge gmail com)