Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: audit user commands of different users under root account
Top Forums UNIX for Advanced & Expert Users audit user commands of different users under root account Post 302430577 by zaxxon on Friday 18th of June 2010 04:41:41 AM
Old 06-18-2010
Check if your OS has any auditing facilites that might provide something like this.
It might be also interessting to enable an su log - on Linux for example it is /etc/login.defs enabling some SU related variables that might write for example /var/log/sulog for new logins. It will at least show when which user su'ed.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

create or modify user account to have same access as root

Is there a way to create or better yet modify a user account so it has the same privs as root? (6 Replies)
Discussion started by: xadamz23
6 Replies

2. UNIX for Dummies Questions & Answers

Modify Root user account ?

How can I modify Root account ? (I want to change the default shell after logging in) Thanks (3 Replies)
Discussion started by: hitlermom
3 Replies

3. UNIX for Dummies Questions & Answers

How to reactivate expired account in Linux as a root user

I am an administrator of a Red Hat Enterprise Linux system. Now one account expired. I wonder how to reactivate the account. Thanks (2 Replies)
Discussion started by: cy163
2 Replies

4. HP-UX

user commands without root access

Hi I have been asked to find out how to 1) create users 2) reset passwords 3) kill processes that may require root privileges without having root password, sudo rights or rights to passwd command Any ideas? Thanks in advance (1 Reply)
Discussion started by: emealogistics
1 Replies

5. Debian

password less login to root from a user account

hello friends, one user is created named "user1" I login as "user1" . Now when i do "su -" to be root user I have to give password for root . Is there any way through which we can skip giving the password to root. i.e. user1@work:~$ su - Password: xxxxxx work:~$ I don't want that... (1 Reply)
Discussion started by: pradeepreddy
1 Replies

6. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

7. Red Hat

startx by non-root user account in red hat linux kernel 2.6

How can I use the command "startx" by other user account such as "oracle" ?? I cannot startx by user account oracle ?? How to fix it ??? Any adivce ??? I use red hat linux kernel 2.6 $ startx Fatal server error: PAM authentication failed, cannot start X server. Perhaps you do... (0 Replies)
Discussion started by: chuikingman
0 Replies

8. Solaris

How to see the root information from user loging account?

Hi friends when ever user tried to loging to the server from the user account.we can see the from who -u command.this was fine shut@erpqas $ who -u ipadmin pts/1 Mar 18 16:05 old 157 (10.5.23.74) ipadmin pts/3 Mar 19 08:29 old 11076 ... (3 Replies)
Discussion started by: tv.praveenkumar
3 Replies

9. SuSE

Allow multiple users to run several root commands

I am using SUSE Linux Enterprise Server 10 SP2 (i586) and I had earlier ammended my sudoers file to allow users to become root user with "sudo su - " command Now I am trying to add multiple users to the sudoers file to run several commands such as restarting the server, restarting the nagios... (9 Replies)
Discussion started by: hedkandi
9 Replies

10. UNIX for Dummies Questions & Answers

Not able to switch to other users using su -user from root

Hi all, I have a small problem. When I log in as root and try to switch to any other user using su -user, then it is giving an error saying libncurses.so permission denied. Can you help me? Thank you in advance. Sai. (1 Reply)
Discussion started by: sai2krishna
1 Replies

LEARN ABOUT MOJAVE

login

LOGIN(1)						    BSD General Commands Manual 						  LOGIN(1)

NAME

     login -- log into the computer

SYNOPSIS

     login [-pq] [-h hostname] [user]
     login -f [-lpq] [-h hostname] [user [prog [args...]]]

DESCRIPTION

     The login utility logs users (and pseudo-users) into the computer system.

     If no user is specified, or if a user is specified and authentication of the user fails, login prompts for a user name.  Authentication of
     users is configurable via pam(8).	Password authentication is the default.

     The following options are available:

     -f      When a user name is specified, this option indicates that proper authentication has already been done and that no password need be
	     requested.  This option may only be used by the super-user or when an already logged in user is logging in as themselves.

	     With the -f option, an alternate program (and any arguments) may be run instead of the user's default shell.  The program and argu-
	     ments follows the user name.

     -h      Specify the host from which the connection was received.  It is used by various daemons such as telnetd(8).  This option may only be
	     used by the super-user.

     -l      Tells the program executed by login that this is not a login session (by convention, a login session is signalled to the program with
	     a hyphen as the first character of argv[0]; this option disables that), and prevents it from chdir(2)ing to the user's home direc-
	     tory.  The default is to add the hyphen (this is a login session).

     -p      By default, login discards any previous environment.  The -p option disables this behavior.

     -q      This forces quiet logins, as if a .hushlogin is present.

     If the file /etc/nologin exists, login dislays its contents to the user and exits.  This is used by shutdown(8) to prevent users from logging
     in when the system is about to go down.

     Immediately after logging a user in, login displays the system copyright notice, the date and time the user last logged in, the message of
     the day as well as other information.  If the file .hushlogin exists in the user's home directory, all of these messages are suppressed.  -q
     is specified, all of these messages are suppressed.  This is to simplify logins for non-human users, such as uucp(1).  login then records an
     entry in utmpx(5) and the like, and executes the user's command interpreter (or the program specified on the command line if -f is speci-
     fied).

     The login utility enters information into the environment (see environ(7)) specifying the user's home directory (HOME), command interpreter
     (SHELL), search path (PATH), terminal type (TERM) and user name (both LOGNAME and USER).

     Some shells may provide a builtin login command which is similar or identical to this utility.  Consult the builtin(1) manual page.

     The login utility will submit an audit record when login succeeds or fails.  Failure to determine the current auditing state will result in
     an error exit from login.

FILES

     /etc/motd		message-of-the-day
     /etc/nologin	disallows logins
     /var/run/utmpx	current logins
     /var/mail/user	system mailboxes
     .hushlogin 	makes login quieter
     /etc/pam.d/login	pam(8) configuration file
     /etc/security/audit_user
			user flags for auditing
     /etc/security/audit_control
			global flags for auditing

SEE ALSO

     builtin(1), chpass(1), newgrp(1), passwd(1), rlogin(1), getpass(3), utmpx(5), environ(7)

HISTORY

     A login utility appeared in Version 6 AT&T UNIX.

BSD
								September 13, 2006							       BSD
All times are GMT -4. The time now is 01:45 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy