[ale] Script at Login Question

Geoffrey esoteric at 3times25.net
Wed Mar 24 07:39:53 EST 2004


Keith Hopkins wrote:
> Jonathan Glass wrote:
> 
>> I was thinking of logging their entire sessions.  We're doing some 
>> performance benchmarking, and it would make collecting the results
>> more reliable than asking the researchers for them.  They tend to
>> be a bit slow in responding.  :)
>> 
>> I'm also thinking about it from a security/audit standpoint.  My
>> users are all Windows/Samba users, so it would be nice to log any
>> shell activity on their accounts, since they should have very
>> little reason to use a shell.
>> 
>> 
>> 
> um....
> 
> HISTFILE The name of the file in which command history is saved ....
> 
> 
> ala `man bash`

Unfortunately, the user can remove it.  The user must have right perms 
to it, so even if you deny removal of the file via directory perms, they 
can overwrite it.


-- 
Until later, Geoffrey                     Registered Linux User #108567
Building secure systems in spite of Microsoft



More information about the Ale mailing list