Logging all the user activities, and commands

Posted on 2006-05-02
Last Modified: 2010-04-21
Hi All,
   I want to create some sort of Audit Log to audit the users activities, and the commands they are entering on a Sun Solaris system (V.8.0) and generate an audit log for so, and on the other hand the user should not have the previlige to disable the logging for his activity.
    I hope to find any clue soon, as that is threatening my system.
Question by:A_HASSAN

    Assisted Solution

    Please study the document published at the following URL to learn about system accounting using Solaris 8.
    LVL 38

    Accepted Solution

    You can  use -- "bsmconv" -- BSM (Basic Security Module) Auditing, it is installed on your system, but disabled by default, all you need to do is to configure and enable it. Once you get it runing, you can check all the users' command history. (eg use "lastcomm")
    man bsmconv
    man lastcomm

    to learn more details.     -- Search for BSM

    LVL 3

    Assisted Solution

    Hi A_HASSAN,

    Try to read some about it in the sun man pages for: audit -> man audit
    There you are going to find some information about the audit command and also other commands.
    From Man pages:
         bsmconv(1M),   praudit(1M),   audit(2),    audit_control(4),
         audit_user(4), attributes(5)

    Also, if you really want to know how audit works in Unix systems, you can check the following link:,289483,sid14_gci1004976,00.html

    In the following link you will find out how to set up audit

    I hope it helps you. =0)

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Do You Know the 4 Main Threat Actor Types?

    Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

    In tuning file systems on the Solaris Operating System, changing some parameters of a file system usually destroys the data on it. For instance, changing the cache segment block size in the volume of a T3 requires that you delete the existing volu…
    A metadevice consists of one or more devices (slices). It can be expanded by adding slices. Then, it can be grown to fill a larger space while the file system is in use. However, not all UNIX file systems (UFS) can be expanded this way. The conca…
    Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
    In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    13 Experts available now in Live!

    Get 1:1 Help Now