Command history log for audit trail

I need to set up an audit trail for all commands run on machines. I know that the auth.log records who logs in and when, and that each user's .bash_history has a history of their commands. But is there some other way to create a log for all commands run on a system? -- To UNSUBSCRIBE, email

password minimum days problem

Here's the issue. If PASS_MIN_DAYS is set to some value in /etc/login.defs, this defines the minimum number of days a user must keep the same password. This is intended to prevent password cycling. Password cycling is when a password history is used and the new password is required to be

Re: Logauswertung (en translation)

My problem is what tool to use to evaluate the logs for attacks (e.g. portscans) and notify me by mail? I know you probably wouldn't want to hear the question, but I'll put it to you: What for? I would utilize the logs for the goal of archival. Particular blocked attacks or portscans occur

Re: Logauswertung (translation)

Hello, I'm at a company and would like to set up a Debian router/firewall. Debian is minimally installed and I've chosed Shorewall as the firewall. I would additionally like to send the logs over Syslog-ng to a log server. My problem is what tool do I use to evaluate the logs for attacks and

pam.d common-passwd: obscure option includes similar but is vague

in /etc/pam.d/common-password there is: password required pam_unix.so nullok obscure min=4 max=8 md5 reading /usr/share/doc/libpam-doc/txt/pam.txt.gz to find the definition of obscure: Palindrome: Is the new password a palindrome of the old one? A palindrome is where the words read the

obscure in /etc/pam.d/common-password what does it mean exactly?

I've scoured through all Debian pam documentation, upstream PAM docs, and did extensive googling but cannot find the definition of obscure as it applies to common-password. Anyone have any info on this? I am assuming this is where the default system password policy is set: password

Re: obscure in /etc/pam.d/common-password what does it mean exactly?

Hello, On Wed, Mar 22, 2006 at 03:33:39PM -0800, [EMAIL PROTECTED] wrote: I've scoured through all Debian pam documentation, upstream PAM docs, and did extensive googling but cannot find the definition of obscure as it applies to common-password. Anyone have any info on this?

Re: obscure in /etc/pam.d/common-password what does it mean exactly?

On Wed, Mar 22, 2006 at 03:33:39PM -0800, [EMAIL PROTECTED] wrote: I've scoured through all Debian pam documentation, upstream PAM docs, and did extensive googling but cannot find the definition of obscure as it applies to common-password. Anyone have any info on this? I am