RBAC / restricting root.

From: Graham Wood (rauxon@dragonhold.org)
Date: Thu Jul 04 2002 - 08:57:36 EDT

• Next message: Graham Wood: "Root access Part II."
• Previous message: AK Rasanth: "Shell Querry"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

For various internal politics reasons, we have to give root access to a group
that we need to monitor.

We're looking at finding some way to get a log of what they do. Whilst I'm
aware that they could just delete a local one, has anyone got any suggestions
for how to do this?

One of my colleagues has suggested RBAC, but can't find out how to do the
logging, and whilst I've looked at playing with LD_PRELOAD, its not really an
effective answer.

Anyone?

Graham

-- 
Whomever goes to fight monsters should take care not to become a monster
himself. And when you stare too long into the abyss, the abyss stares back
into you. 
                                                      -Frederick Nietzsche
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: Graham Wood: "Root access Part II."
• Previous message: AK Rasanth: "Shell Querry"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:24:33 EDT