Fwd: Different log files in sudo?
George Meharry II
gmeharry at yahoo.com
Fri Dec 14 08:12:58 EST 2001
Felipe,
The problem you are presenting is one of culture -
that is the culture of UNIX administration. The law
MUST be laid down such that:
"thou shall not do 'sudo su -' nor shall thou do 'sudo
-s'!"
Now it's always been a cop-out of a UNIX admin that "I
can't do such-and-such command using sudo" ect. This
is because the UNIX admin has gotten complacent in
their usage/knowledge of UNIX regular expression.
There's ALWAYS a way to do ANY command via sudo so it
gets logged! You've just got to change the culture.
Make it an ISO requirement! In doing so, it is now a
"business rule" and there are now penalties for not
following the ISO documentation ...
and so on, and so on ... It won't be an easy task, but
it is one worth pursuing!
FWIW, take with a grain of salt.
The soapbox has been back to the masses .. :-)
Note: forwarded message attached.
__________________________________________________
Do You Yahoo!?
Check out Yahoo! Shopping and Yahoo! Auctions for all of
your unique holiday gifts! Buy at http://shopping.yahoo.com
or bid at http://auctions.yahoo.com
-------------- next part --------------
An embedded message was scrubbed...
From: "Salum, Felipe" <felipe.salum at eds.com>
Subject: Different log files in sudo?
Date: Fri, 14 Dec 2001 08:10:14 -0500
Size: 3913
URL: </pipermail/sudo-users/attachments/20011214/2019c62f/attachment.mht>
More information about the sudo-users
mailing list