Has anyone configured psacct package on workstations and send them to a remote syslog server. Here is the scenario,
We have a Red Hat development farm and we need to monitor user activity, process; log and send them to a remote syslog server and trigger alerts if suspicious activity is seen. I have come across the pacct tool but might need to work further on triggers which we can do it at a later stage but before that I need to see if data generated using pacct (namely wtmp, btmp, lastlog etc..) can be sent to remote.
Let me know.