Perhaps it’s just about wanting to keep track “what happened?!?”
For such a scenario, consider conserver
https://www.conserver.com/docs/console.man.html and script
http://man.openbsd.org/script to store the terminal interactions
Assume untrusted users probably can escape these such environments
I don't believe there is any supported way to do this, an unsupported
way, probably, but also probably an educated operator could circumvent
it anyhow.
You probably shouldn't allow untrusted users to access the shell.
On Sat, 6 Jul 2024 at 09:26, Phil Mawson via juniper-nsp
wrote:
>
> Hi,
>
>
Hi,
Once a user enters the unix shell on a Juniper router/switch (Ie: start shell),
it appears all standard logging of the commands typed is not captured by syslog
and obviously not sent to AAA for authorisation.
Is there a way to capture all commands users type and send to an external
3 matches
Mail list logo
