Linked Questions

Ask Question
18 questions linked to/from Log all commands run by admins on production servers
Hot Newest Score Active Unanswered
5 votes
2 answers
7k views

How can I log all commands executed on Linux, including their command-line arguments (parameters)? So, for example, if someone runs: rm -rf /tmp/foo I would see a log entry similar to this: 2016-01-...
Neil's user avatar
  • 2,599
17 votes
4 answers
4k views

I want to give access to my root server to an external system administrator, but i want to be sure to double check what he is doing to my server, e.g. copying data i don't want them to do and so on. I ...
cedivad's user avatar
  • 710
17 votes
5 answers
809 views

My company requires that any time a user logs into a production server the reason that person logged in and the changes the user intends to make must be logged. My team wants to do this, but its easy ...
user avatar
5 votes
2 answers
7k views

This question is related to my previous question: Log all commands run by admins on production servers It is company policy for admins to login to the servers via a personal username, and then run ...
Soviero's user avatar
  • 4,426
3 votes
1 answer
13k views

How to install auditd on CentOS 6.4 x64 ? I want to Log all commands run by admins Log all commands run by admins on production servers Edit: I can't run aduditd service I did with this tut enter ...
Luka Tce's user avatar
  • 37
5 votes
2 answers
538 views

I'm providing access to third party service through ssh, that service install some packages and do other kind of configuration on my server I want to know which commands or scripts are run by that ...
Azeem Haider's user avatar
  • 151
5 votes
1 answer
2k views

This is for Ubuntu 14.04 and Centos 7. I need to limit the number of users actively running as root. i.e. Logged in as root on the CLI. Basically, I want only one user at a time to be able to run ...
JDS's user avatar
  • 2,678
1 vote
1 answer
2k views

I try to implement individual accountability for my RHEL systems using selinux and the audit.log. I followed the instructions given here: Log all commands run by admins on production servers If I ...
fetch101's user avatar
  • 88
5 votes
0 answers
1k views

I'm familiar with some of the more common ways of configuring a Linux server to be compliant with PCI-DSS 3.2, at least to the requirements of SAQ A. A common concern is requirement 8.5 which ...
richard's user avatar
  • 151
2 votes
0 answers
2k views

We have about a thousand servers / virtual machines, and currently keeping track of who did what where isn't easy. And to make it worse, clients have access to their own machines and often don't know ...
Ulrar's user avatar
  • 417
1 vote
1 answer
1k views

When commands are saved to history in Linux, is there some way to prepend the command line in the history with the remote SSH IP address and process ID so that it's easy to group commands from the ...
sa289's user avatar
  • 1,418
1 vote
3 answers
257 views

I have a closed source program which calls server over SSH and executes a set of commands. Could you tell me how can I log all commands? My server is under Ubuntu.
user349302's user avatar
  • 157
2 votes
1 answer
247 views

Is it better to use auditd or sudo logs to log root and other user activities on a Red hat enterprise machine?
JinPangPang's user avatar
  • 135
1 vote
0 answers
406 views

I want to log commands executed by an application server(resin) to catch things like "cat /etc/passwd" or "whoami" being executed by user resin. However, since the user resin uses a /bin/false shell, ...
user435644's user avatar
  • 11
0 votes
0 answers
385 views

We need to capture user commands, on logs now the user has Sudo access. we have planned to disable sudo and they need to use sudo before the command. How to enable sudo and disable sudo su on ubuntu ...
Ali's user avatar
  • 1

15 30 50 per page
1
2