openssh logging of remote commands in syslog
Jason Stone
jason at dfmm.org
Thu Mar 8 10:06:35 EST 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> > The ssh.com version of ssh will log information on the remotely
> > executed command in the syslog:
> >
> > Mar 7 15:29:20 6D:marx sshd[21346]: log: executing remote command as
> > root: ls
> >
> > It seems that openssh doesn't do that
> IMO, this kind of logging can be rather intrusive..
Yes, but not moreso than, say, bsd-style ps accounting, or, even better,
ktracing init, etc. The point is, paranoid sysadmins are gonna log stuff
anyway - we might as well help by providing tools to do so.
We already do in the form of "-d -d -d" so I don't see the problem in
adding an option to finetune what's logged.
-Jason
---------------------------
If the Revolution comes to grief, it will be because you and those you
lead have become alarmed at your own brutality. --John Gardner
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: See https://private.idealab.com/public/jason/jason.gpg
iD8DBQE6pr7/swXMWWtptckRArfEAKCwEySWsUJxUOqeYgHwoyMUoHKQwwCdFP2M
FsvEHSoHlV+oG1Fzb+tCUO0=
=HjGF
-----END PGP SIGNATURE-----
More information about the openssh-unix-dev
mailing list