Hi I have a tacacs PAM module (pam_tacplus), which works like a charm on Centos 5.5.
The user performing ssh to the Centos server is getting authenticated and authorized via TACACS PAM. The pam_tacplus has an accounting option, which is sending a start of the service shell and end of the service shell to the ACS for accounting. I want to send all the commands typed by the user on the Linux server to TACACS+ accounting. What's the best way to achieve this? I have process accounting turned ON on the Centos server. Can I parse the output of lastcomm and upload that to the TACACS+ server periodically? Is there a wrapper to the login process to intercept the commands which the user types and send it to TACACS+ Accounting before actually executing them on the Centos server? $ lastcomm lastcomm mark stderr 0.01 secs Tue Aug 10 23:54 man S mark stderr 0.03 secs Tue Aug 10 23:54 pager mark stderr 0.00 secs Tue Aug 10 23:54 gzip mark stderr 0.00 secs Tue Aug 10 23:54 nroff mark stderr 0.00 secs Tue Aug 10 23:54 groff mark stderr 0.00 secs Tue Aug 10 23:54 grotty mark stderr 0.02 secs Tue Aug 10 23:54 troff mark stderr 0.05 secs Tue Aug 10 23:54 locale mark stderr 0.00 secs Tue Aug 10 23:54 tbl mark stderr 0.00 secs Tue Aug 10 23:54 preconv mark stderr 0.00 secs Tue Aug 10 23:54 man F mark stderr 0.00 secs Tue Aug 10 23:54 man F mark stderr 0.00 secs Tue Aug 10 23:54 man F mark stderr 0.00 secs Tue Aug 10 23:54 man F mark stderr 0.00 secs Tue Aug 10 23:54 man F mark stderr 0.00 secs Tue Aug 10 23:54 man F mark stderr 0.00 secs Tue Aug 10 23:54 man F mark stderr 0.00 secs Tue Aug 10 23:54 Thanks Mark ------------------------------------------------------------------------------ This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev _______________________________________________ jffnms-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jffnms-users
