HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
cancel
Showing results for 
Search instead for 
Did you mean: 

Disabling the SAM's GUI

 
Aldis Black
Advisor

Disabling the SAM's GUI

Hi All, I recently implemented the keystroke logging for root auditing but I am unable to log the activities in SAM when initiated via dtterm as it starts as GUI. Is it possible to disable the GUI version of sam so all the activities could be logged as in text version?
4 REPLIES
Pete Randall
Outstanding Contributor

Re: Disabling the SAM's GUI

Sure, simply "unset $DISPLAY" prior to invoking SAM. You could do this in a small script aliased to sam so it would be automatic. If the script were clever enough it would save the contents of $DISPLAY before unsetting, then restore DISPLAY after running SAM.


Pete

Pete
Pete Randall
Outstanding Contributor

Re: Disabling the SAM's GUI

However, I'm still not sure that you will be able to intercept and log all the SAM keystrokes because you will still be in a menuing environment. Try it and see, I guess.


Pete

Pete
Steven Schweda
Honored Contributor

Re: Disabling the SAM's GUI

> [...] simply "unset $DISPLAY" [...]

Uh, "unset DISPLAY", perhaps?

> [...] If the script were clever enough it
> would save the contents of $DISPLAY before
> unsetting, then restore DISPLAY after
> running SAM.

Or, even more clever, don't bother. Setting
the environment inside a shell script has
little effect when that script exits.

> [...] script aliased to sam [...]

Or, aliased to something like "sam", but not
"sam", leaving it no harder to get to the
normal SAM.
Torsten.
Acclaimed Contributor

Re: Disabling the SAM's GUI

I doubt if keystroke logging makes any sense with sam, because you will see a lot of up and down and return keystrokes only.

How about having a look into SAMs log files or syslog?

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.

__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!