For change control/support purposes, our OpenVMS servers require tech support
or administrator to login to a central VMS server (which is DCL shell script menu
driven) & from there, the administrator has to choose an option on the screen that
will do "telnet/log=logfilename target_host/IP_addr_to_access" (in OpenVMS it's
"set host/log=... target_host/IP_addr_to_access).
Would like to implement this on Solaris/HPUX/RedHat servers - is it possible to do
this transparently to the user : it's sort of screen logger plus keylogger (but don't
capture passwords) :
I'm thinking along the line of inserting into each individual users' .profile (for Korn
& Bourne shell) the lines
...... user gets into system to do whatever he's doing .....
When user type "exit" or Control-D to exit, Unix OS will
exit twice (once to close the "scripted" file & another
time is the actual logoff.
Appreciate specific/exact codings.
Probably can be done at /etc/profile so that I don't have to
do this to each & every user's .profile but the coding has
to be such that it only apply this to userids with the first
3 alphabets containing the text "sgp" as I don't want to
log users who login using oraxxxxxx or an application
related id (aworks ...).
The administrators could be login to the system from a
Certainly, if the user sgpxxxx login & then "su root",
whatever, he types/views after the "su" should still
The main problem I faced is implementing "exit" logoff -
when the user enter "exit" once or presses Ctrl-D,
Unix OS should do "exit" twice - once to close the
script file & another time to really logoff.
Will also need some shell script coding : check the
userid's first 3 letters & only if it contains small or
big letters "sgp', then only start "script filename"
ie start logging, else don't log it.