Since it integrates with syslog, it's also easy to stream it to a log server if needed. I prefer this method as it makes it really easy to get an idea of what you or a trusted colleague did on a server. Command Logging: (BASH only) This doesn't add much security (as one could easily bypass logging), but gives an extremely easy to read log file with the command run, the user running the command (even if they run su), and the exit code of the command.There are two methods you could use to keep track of commands run on your linux boxes: This isn't really for security, but really more for keeping track of who did what, or remembering what you did a long time ago.ĭistributions: RHEL_5+6+7 CentOS_5+6+7 Fedora
One can optionally even record keystrokes on terminal/SSH sessions. This is an extremely useful tip for recording every command entered on your servers, with the (logged in) username even if they use su.
0 kommentar(er)
