Every time a user drops into programmer mode (or attempts to drop into programmer mode), OpenVista should to log the access to a log file. There are two entry points to "programmer mode" - the first is at PRGMODE^%ZOSV, and the second is when "mumps -dir" is invoked on the Linux command line. Each log entry should contain the date, the real Linux user, the Linux account used for authentication (if the programmer is using a tied account), the remote IP address, and optionally, an error indicating why authentication failed. Also see bug 322986.
The log file should be append-only, i.e., programmers should not be able to edit the log file. A facility such as syslog may be able to provide an append-only log mechanism. Note that this will not guarantee the log file's integrity - users with programmer mode and/or Linux shell access will be able to submit false entries to the logger and/or bypass/disable the logging mechansim.
Jon - are we still concerned about logging "mumps -dir"? If not, we can close this as a duplicate of bug 322986, correct?