On Wed, 2007-08-01 at 16:46 -0700, George Toft wrote:
> I am searching for a solution. Client company is looking for a means to
> track all commands issued by root. PowerBroker has already been
> excluded as it will cost over $1M to deploy. Product must be
> inexpensive and supported.
>
> I've researched this a bit already, and came up with sudoshell (no
> development since 2004) and modifying the bash source code and
> recompiling. Neither solution is acceptable.
>
> Any ideas?
Disable the root user and make all admins use sudo? I believe you can
disable the ability to do "sudo bash". It can be annoying to have all
your commands prefaced with "sudo", but any good admin can alias them.
--Ted
---------------------------------------------------
PLUG-discuss mailing list -
PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
(text/plain)
