openssh logging of remote commands in syslog

Jason Stone jason at dfmm.org
Thu Mar 8 10:06:35 EST 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> > The ssh.com version of ssh will log information on the remotely 
> > executed command in the syslog:
> >
> > Mar  7 15:29:20 6D:marx sshd[21346]: log: executing remote command as
> > root: ls
> >
> > It seems that openssh doesn't do that

> IMO, this kind of logging can be rather intrusive..

Yes, but not moreso than, say, bsd-style ps accounting, or, even better,
ktracing init, etc.  The point is, paranoid sysadmins are gonna log stuff
anyway - we might as well help by providing tools to do so.

We already do in the form of "-d -d -d" so I don't see the problem in
adding an option to finetune what's logged.


 -Jason

 ---------------------------
 If the Revolution comes to grief, it will be because you and those you
 lead have become alarmed at your own brutality.         --John Gardner



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: See https://private.idealab.com/public/jason/jason.gpg

iD8DBQE6pr7/swXMWWtptckRArfEAKCwEySWsUJxUOqeYgHwoyMUoHKQwwCdFP2M
FsvEHSoHlV+oG1Fzb+tCUO0=
=HjGF
-----END PGP SIGNATURE-----






More information about the openssh-unix-dev mailing list