HPE Community
Operating System - HP-UX
1752328 Members
5549 Online
108786 Solutions
New Discussion

create a custom logs script of rm command

 
Aamir14
Regular Advisor

‎10-03-2013 01:06 AM

‎10-03-2013 01:06 AM

create a custom logs script of rm command

Hi,

 

create a custom logs script of rm command

 

many people log to root user and  delete some files.

 

i want to make a script when any user and root user run the RM command

 

its save a logs to any file.

 who run the RM command   

 

Please give me some advice .

 

Thanks

Aamir

 

0 Kudos
Reply
5 REPLIES 5
madhucertify
Advisor

‎10-03-2013 03:58 AM

‎10-03-2013 03:58 AM

Re: create a custom logs script of rm command

Hi Aamir,

 

 enable history file.

 

if you want to have records for each user,you have make changes in root .profile file.

 

regards

 

Madhu

 

 

 

 

0 Kudos
Reply
Aamir14
Regular Advisor

‎10-03-2013 08:23 AM

‎10-03-2013 08:23 AM

Re: create a custom logs script of rm command

Hi,

 

I want only rm command logs because many people log in to root user(such as DBA user) and clear 

the history file.

and create a script.and save to some hidden location.

 

Please give me a script or it is a possible.

 

 

Thaks

Aamir

 

 

 

0 Kudos
Reply
madhucertify
Advisor

‎10-03-2013 09:01 AM

‎10-03-2013 09:01 AM

Re: create a custom logs script of rm command

Hi

 

>>because many people log in to root user(such as DBA user) and clear the history file.

 

why DBA user is switching to root ,if it so then there is a security issue.

 

if DBA really wants to use root,grant them the sudo access.

 

 

>>create a script.and save to some hidden location.

 

if people has root access,they can even find and edit hidden location.

 

0 Kudos
Reply
RJHall
Frequent Advisor

‎10-03-2013 09:34 AM

‎10-03-2013 09:34 AM

Re: create a custom logs script of rm command

A couple of thoughts occur: (1) use HIDS and filter on rm actions; (2) set up auditing and post-process the logs to look for deletions.

0 Kudos
Reply
Aamir14
Regular Advisor

‎10-03-2013 12:27 PM

‎10-03-2013 12:27 PM

Re: create a custom logs script of rm command

Hi,

 

Thanks for advice.

 

but my DBA user running software and install Database on /u01 and /u02 mount point.

 

I give the full access of /u02 and /u02 mount point

not to vg00 mount point

 

it is possible DBA users run every single command  on /u02 /u01 mount point.and not to run all mount point.

 

if yes how can give the access.

 

Thanks for advance

aamir

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.