On Mon, 2007-07-30 at 08:11 -0500, Eric Crist wrote:
> On Jul 30, 2007, at 7:34 AMJul 30, 2007, Adam J Richardson wrote:
>
> > Tom Evans wrote:
> >> This seems great in principle, but of course, you just gave them a
> >> root
> >> shell, and so they can delete their log file easily enough...
> >
On Mon, 30 Jul 2007 15:11:06 +0200, Eric Crist <[EMAIL PROTECTED]> wrote:
On Jul 30, 2007, at 7:34 AMJul 30, 2007, Adam J Richardson wrote:
Tom Evans wrote:
This seems great in principle, but of course, you just gave them a root
shell, and so they can delete their log file easily enough...
On Jul 30, 2007, at 7:34 AMJul 30, 2007, Adam J Richardson wrote:
Tom Evans wrote:
This seems great in principle, but of course, you just gave them a
root
shell, and so they can delete their log file easily enough...
You could have cron email it to you every 5 minutes. Unlikely he'd
check
Tom Evans wrote:
This seems great in principle, but of course, you just gave them a root
shell, and so they can delete their log file easily enough...
You could have cron email it to you every 5 minutes. Unlikely he'd check
the crontab immediately, unless he was really bent on the system's
de
On Tue, 2007-07-24 at 13:18 -0400, Ian Lord wrote:
> Hi,
>
>
>
> A Zend technician asked me to have a root access on one of my box to
> troubleshoot something wrong in Zend Platform installation that doesn't work
> on Freebsd.
>
>
>
> He will need root access naturally to install and debug
> Exactly, I don't know what needs to be done, and they don't
> neither. That's why they need to browse around trying to
> figure out why their installer doesn't work.
>
> Sudo wouldn't be any help here cause I would need to pre
> approve commands and I don't know which one will be needed.
>
>
ED]
Sent: 24 juillet 2007 15:42
To: Tom Grove
Cc: freebsd-questions@freebsd.org; Ian Lord
Subject: Re: Root access loggin
I may be misunderstanding this, but wouldn't allowing only certain
commands with sudo assume that the user actually knows what commands
are needed by the user? In this situat
I accidentally sent my response directly to the OP, rather than to the
list. If he feels it's worthwhile to do so, I guess he can post it to
the list. In short, I just pointed out that setting up a logging server
that collects log events "invisibly" might be a good idea in a
circumstance like th
\ \ Paul Schmehl wrote:
--On Tuesday, July 24, 2007 16:01:33 -0400 Ian Lord
<[EMAIL PROTECTED]> wrote:
-Original Message-
From: John Fitzgerald [mailto:[EMAIL PROTECTED]
Sent: 24 juillet 2007 15:42
To: Tom Grove
Cc: freebsd-questions@freebsd.org; Ian Lord
Subject: Re
--On Tuesday, July 24, 2007 16:01:33 -0400 Ian Lord <[EMAIL PROTECTED]>
wrote:
-Original Message-
From: John Fitzgerald [mailto:[EMAIL PROTECTED]
Sent: 24 juillet 2007 15:42
To: Tom Grove
Cc: freebsd-questions@freebsd.org; Ian Lord
Subject: Re: Root access loggin
I
-Original Message-
From: John Fitzgerald [mailto:[EMAIL PROTECTED]
Sent: 24 juillet 2007 15:42
To: Tom Grove
Cc: freebsd-questions@freebsd.org; Ian Lord
Subject: Re: Root access loggin
I may be misunderstanding this, but wouldn't allowing only certain
commands with sudo assume tha
I may be misunderstanding this, but wouldn't allowing only certain
commands with sudo assume that the user actually knows what commands
are needed by the user? In this situation it seems like the whole
reason to grant access to the server was because the user _doesn't_
know what needs to be done.
Lowell Gilbert wrote:
Tom Grove <[EMAIL PROTECTED]> writes:
You could even go so far as to limit what he can use sudo on.
$>man sudo
Giving him full root access is probably not a good idea.
In practice, this approach *is* effectively giving him full root
access. Once you have to gi
Tom Grove <[EMAIL PROTECTED]> writes:
> You could even go so far as to limit what he can use sudo on.
>
> $>man sudo
>
> Giving him full root access is probably not a good idea.
In practice, this approach *is* effectively giving him full root
access. Once you have to give the tech the ability to
You can patch bash to log commands to syslog/remote/etc:
http://64.233.169.104/search?q=cache:y0SGTs8EoTYJ:www.linux.it/~carlo/somehacks/bup/bash-2.05b-syslog_udp01.patch+bash+perassi&hl=en&gl=us&strip=1
I set this up on a few machines and it's not too hard. You can also
run a cron job to see wh
Ian Lord wrote:
Hi,
A Zend technician asked me to have a root access on one of my box to
troubleshoot something wrong in Zend Platform installation that doesn't work
on Freebsd.
He will need root access naturally to install and debug remotely.
Is there a way to log all the commands
16 matches
Mail list logo
