shenasar
asked on
redirecting all stderr to file
Hai All!
I am doing a intrusion detection project where i have to trace all user activities. I want to redirect all error messages(stderr) to a file with the user who did that. please guide me how to do this task. Is there any other techniques to trace all user activities. i am using linux 7.2 and developing in C.
I am doing a intrusion detection project where i have to trace all user activities. I want to redirect all error messages(stderr) to a file with the user who did that. please guide me how to do this task. Is there any other techniques to trace all user activities. i am using linux 7.2 and developing in C.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Ahha,
I read your first post to mean something else. What you're really trying to do is capture all of the shell commands and errors.
There's actually quite a large business in providing this kind of security to unix. Several companies provide plug-in security, though they are rather expensive.
Two suggestions come to mind.
If you're trying to contain people that have legitimage access to your system you can always force them to your own shell and just limit the things that you'll let them do.
If you've got source code for the shell processors (ksh, bsh, etc) you can always build in the functionality that you're looking for.
Kdo
I read your first post to mean something else. What you're really trying to do is capture all of the shell commands and errors.
There's actually quite a large business in providing this kind of security to unix. Several companies provide plug-in security, though they are rather expensive.
Two suggestions come to mind.
If you're trying to contain people that have legitimage access to your system you can always force them to your own shell and just limit the things that you'll let them do.
If you've got source code for the shell processors (ksh, bsh, etc) you can always build in the functionality that you're looking for.
Kdo
shenasar:
This old question needs to be finalized -- accept an answer, split points, or get a refund. For information on your options, please click here-> http:/help/closing.jsp#1
EXPERTS:
Post your closing recommendations! No comment means you don't care.
This old question needs to be finalized -- accept an answer, split points, or get a refund. For information on your options, please click here-> http:/help/closing.jsp#1
EXPERTS:
Post your closing recommendations! No comment means you don't care.
ASKER
I need some more information. what i am trying to do is to trace all user activities. For example, the error message that comes when an user try to access /root directory has to be redirected to a file specifying the name of the user,command he executed, time, etc.
please guide me how to do that, because i am at the neck of my project work.