[ale] Create custom log

Greg runman at telocity.com
Thu Feb 14 15:49:04 EST 2002 

	What about doing a "snapshot" of the file system on that directory over a
period of time at certain intervals to show what it looked like at that time
?  I know that all sorts of info is in Linux (attached to the inode table if
memory serves correctly). If you access this info and pipe it to a file
(attach at end) then it should tell you what the directory looked like over
a period of time.

	NSA Linux has ACL's and some serious control on everything so that could be
a possible avenue of approach.  The solution appears easy: look at file
system, if changed then record, if not then continue and loop back... have
you thought about Tripwire (the old free version ?). I just finished a
Security course and could send you stuff on it ... it seems to be a possible
solution.  Secure web access may be another solution more friendly to
logging ... I cannot recall if there is any ssh/ftp thing out there.

Sorry about not helping any more

Greg Canter

> -----Original Message-----
> From: Jeff Hubbs [mailto:hbbs at attbi.com]
> Sent: Thursday, February 14, 2002 1:22 PM
> To: sangell at nan.net
> Cc: ale at ale.org
> Subject: Re: [ale] Create custom log
>
>
> Steve -
>
> This may be a situation where Linux might be the wrong operating system.
>  I know that OpenVMS has the capability to keep logs of all file access.
>  Perhaps that NSA version of Linux I've read about has had that feature
> added to it.
>
> - Jeff
>
> sangell at nan.net wrote:
>
> >I tried this one a day or two ago and got no replies so I'll try another
> >method. Can/How do I create a means of logging file access? I am
> needing to
> >monitor access to directories in /home. I need a means of knowing when
> >files placed on a server have been picked up so that they can be
> deleted by
> >an automated process. Why do I not let the user delete the
> files? Because I
> >have to have a way of showing that the file was placed on the server, was
> >picked up, and then deleted a short time later. Otherwise client can lose
> >file and blame me for it "never being placed on server to be
> picked up". I
> >would like to log ftp transactions but have exhausted all
> efforts to find a
> >solution to do that since I am using F-Secure and sftp. Any
> help? Anybody?
> >You guys are awake right? (Please keep in mind programming is not my
> >forte'!)
> >
> >As always thanks in advance!
> >
> >
> >\_\_\_\_\_\_\_\_\_\_\_/_/_/_/_/_/_/_/_/_/_/
> >\_    Steve Angell,  MCSE, CCNA           _/
> >\_    MIS Operations Manager               _/
> >\_    TSYS Debt Management             _/
> >\_    Norcross, GA                                   _/
> >\_    Phone 770-409-5570                    _/
> >\_    Fax      770-416-1752                   _/
> >\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/
> >
> >
> >---
> >This message has been sent through the ALE general discussion list.
> >See http://www.ale.org/mailing-lists.shtml for more info.
> Problems should be
> >sent to listmaster at ale dot org.
> >
> >
>
>
>
>
> ---
> This message has been sent through the ALE general discussion list.
> See http://www.ale.org/mailing-lists.shtml for more info.
> Problems should be
> sent to listmaster at ale dot org.
>
>
>


---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.

More information about the Ale mailing list