I created a user say call Test , here is what he did
say the test go to directory /etc
Is it possible as a admin to know that the user test went to directory called /etc? I knew they keep it in .bash_history in every directory of home user, but the thing is the user can delete those file , so we don't have any record about the log.
Is it possibe to know ? 1. using all the functionality that come up standard Linux or Sun OS
2. or maybe is there any additional software that you know to see what the user open ?