Root audit

[Dirk Moolman]

I need some help.  I would like to audit specific accounts on my linux
servers. I know you can see the keyboard history, from files like
.bash_history, etc.

Is it also possible to see for example, files that users updated on the
system ?  ..... or if they changed network settings ?

For example, let's say you were forced to give someone the root
password, and you want to trace what they did on the system - can this
be done ?



 



Dirk Moolman
Database and Unix Administrator
Agility Technologies (HealthCorp)



"People demand freedom of speech as a compensation for the freedom of
thought which they seldom use." 




*** Disclaimer ***

The information contained in this e-mail is confidential and legally privileged and is intended solely for the addressee and to others who have the authority to receive it. Access to this e-mail by anyone else is unauthorized and as such, any disclosure, copying, distribution or any action taken or omitted in reliance on it is unlawful. If you have received this e-mail in error, please notify the sender immediately.

The views expressed in this e-mail are the views of the individual sender and should in no way be construed as the views of the Company.

The Company is not liable to ensure that outgoing e-mails are virus-free.

The Company is not liable, should information or data, for whatever reason, be corrupted or fail to reach its intended addressee.

The Company is not liable for any loss or damage of whatsoever nature and howsoever arising resulting from the opening or the use of the information in this e-mail, including its attachments and links.

The sender of this e-mail is subject to and bound by the terms and conditions of Company?s Electronic Communications Usage Policy.