I have a pair of scripts that allow users to run root shells with sudo, retaining the audit trail. They are called sudoscriptd and sudoshell. The first script opens a FIFO and hangs out waiting for someone to write to it. When the sudoscriptd script gets data, it timestamps it and writes it to a log file. When the log file size exceeds 2MB, sudoscriptd forks a child to compress the data, and continues logging to a new log. The sudoshell script simply calls the Unix script command with the FIFO as the typescript file.
I'm currently soliciting comments about htese scripts on the SAGE-members and sudo-users mailing lists. The scripts are available for download at http://www.egbok.com/sudoscript. When I've had a little peer review, I intend to upload the scripts to CPAN. Unless anyone here has a better idea I think that Unix/System_Administration is the proper category for these scripts. Comments welcome and solicited. -- Howard Owen "Even if you are on the right EGBOK Consultants track, you'll get run over if you [EMAIL PROTECTED] +1-650-339-5733 just sit there." - Will Rogers
