| 2014-02-17 11:43:48 |
François Marier |
description |
The libravatar-master user should only ever run the rsync command on the master. It's enforced by the shell (rssh) that is set, but it should also be logged in case rssh fails:
http://beardyjay.co.uk/logging-all-ssh-commands/logging-ssh
Unfortunately pam_tty_audit is not shipped with wheezy. |
The libravatar-master user should only ever run the rsync command on the master. It's enforced by the shell (rssh) that is set, but it should also be logged in case rssh fails.
All that's needed is to add the following to /etc/pam.d/sshd:
session required pam_tty_audit.so enable=libravatar-master
Unfortunately pam_tty_audit is not shipped with wheezy.
Source: http://beardyjay.co.uk/logging-all-ssh-commands/logging-ssh |
|
