How can I audit all chmod and chgrp commands?
https://stackoverflow.com/questions/1438016
-
08-07-2019 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
Corporate security policies are starting to require low level event logging. For example, file access permission changes. One solution is to use SELinux but our knowledge of this is sparse at best. Another is to replace the command with a proxy which performs auditing (this sucks though).
Any ideas?
Solution
I think you can look at auditd: http://linux.die.net/man/8/auditd
Also check this thread please: http://www.linuxforums.org/forum/linux-security/109864-auditing-logging-all-commands-arguments.html
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
