HPE Community
Operating System - HP-UX
1827809 Members
1944 Online
109969 Solutions
New Discussion

How to log down all commands silently?

 
Kenny Chau
Trusted Contributor

‎04-10-2001 11:23 PM

‎04-10-2001 11:23 PM

How to log down all commands silently?

I want to log down all the commands that was entered but I did not want to let others know that I am logging down what they had done. I know that "script" command can log down but it displays the messages at the beginning and then end that start and stop logging and that is not I want. I had also tried to use "tee" command but it only displayed the output without the command that I type. So please tell me how to log down the commands without letting others know. Thanks very much.
Kenny
0 Kudos
Reply
18 REPLIES 18
Thierry Poels_1
Honored Contributor

‎04-10-2001 11:32 PM

‎04-10-2001 11:32 PM

Re: How to log down all commands silently?

Hi,
if you are only interested in the commands they fire from the shell prompt you could have a look in their history file ($HOME/.sh_history)
good luck,
Thierry.
All unix flavours are exactly the same . . . . . . . . . . for end users anyway.
0 Kudos
Reply
Philip Chan_1
Respected Contributor

‎04-11-2001 12:19 AM

‎04-11-2001 12:19 AM

Re: How to log down all commands silently?

I don't know the answer but got an idea.

Found the source of a shell program, modify it such that all entered commands will be logged to a file, at last replace login shell of your target users with this modified shell program.

~Philip
0 Kudos
Reply
Kenny Chau
Trusted Contributor

‎04-11-2001 04:30 PM

‎04-11-2001 04:30 PM

Re: How to log down all commands silently?

Thanks for your reply, but I want to log down both the commands and output toggether in the same log file so that I can trace any problem.
Kenny
0 Kudos
Reply
Paula J Frazer-Campbell
Honored Contributor

‎04-12-2001 12:29 AM

‎04-12-2001 12:29 AM

Re: How to log down all commands silently?

Hi

You could write a false shell for this in that the false shell presents what appears to be a normal prompt, the users command is then piped to a log, actioned - logged and then displayed back to the user.


Paula
If you can spell SysAdmin then you is one - anon
0 Kudos
Reply
Stefan Schulz
Honored Contributor

‎04-12-2001 01:43 AM

‎04-12-2001 01:43 AM

Re: How to log down all commands silently?

I think the problem is where to start and where to stop. If you really want to log everything i would suggest creating your own shell. Go for the source of the shell you like and modify it to you needs.

But this wil produce a lot of data in your logfiles. If you do it right and a user opens a big file in vi this whole file will be in your log. And i doubt that this will make the logfiles usefull for you.

So i would suggest using the users historyfile for logging. This will give you a pretty good impression what a user does. To maintain these logfiles on a seperate place how about using tee -f on the users histroy? Doing so you wouldnt miss a single command and the user should not recognize he is beeing watched.

Hope this helps. Stefan
No Mouse found. System halted. Press Mousebutton to continue.
0 Kudos
Reply
Vincenzo Restuccia
Honored Contributor

‎04-12-2001 02:25 AM

‎04-12-2001 02:25 AM

Re: How to log down all commands silently?

Edit in .profile script -a /tmp/log.
0 Kudos
Reply
Petr Drobny
Advisor

‎04-13-2001 04:26 AM

‎04-13-2001 04:26 AM

Re: How to log down all commands silently?

Hi, I guess, that logging on terminal-emulator level could help You. When You spawn terminal-emulator X11 window, you can type log parameters - on example: hpterm ... -l -lf "log_file_name" ...
or xterm ... etc. This will be log all input and output to shell and all, what will be send to terminal window. (Log-file system saves in 8kB buffer blocks).
0 Kudos
Reply
Jim Mulshine
Frequent Advisor

‎04-14-2001 03:21 AM

‎04-14-2001 03:21 AM

Re: How to log down all commands silently?

There is a problem with using the script command for logging a users commands and output. If the user types "cat file" where file is the script commands destination file, script logs the output of cat to its log. This can result in the destination file growing very rapidly and perhaps filling the disk. Try it.
0 Kudos
Reply
Steven Sim Kok Leong
Honored Contributor

‎04-14-2001 07:54 AM

‎04-14-2001 07:54 AM

Re: How to log down all commands silently?

Hi,

man runacct and acctcom.

Once runacct is performed, commands performed by each user are logged in the background and they can be filtered and displayed via acctcom.

There are also other accounting commands that you can use for various purposes such as connection accounting and disk usage accounting etc.

Hope this helps. Regards.

Steven Sim Kok Leong
Brainbench MVP for Unix Admin
http://www.brainbench.com
0 Kudos
Reply
Kenny Chau
Trusted Contributor

‎04-17-2001 12:40 AM

‎04-17-2001 12:40 AM

Re: How to log down all commands silently?

Thanks for all your reply. I apologise that I did not state my situation clear. Sorry about that. In fact, I had written a menu for the operators to run command. However, in critical situation, they need to use the root command prompt which I already made. In this case, I want to log down what they had entered and the output together to a log file so that I can trace the problem. However, I don't want them to know that I am viewing what they entered. The script command will show the log begins and the log file name and this is the one that I don't want. I had tried to use the "tee logfile" command but it only logs down the output, you know, some commands will not have output, eg. compress or uncompress. So I want to log down the commands together with the output. Some replies said that I can write my own shell, but how? Can anyone tell me? Thanks very much for your help.
Kenny
0 Kudos
Reply
Philip Chan_1
Respected Contributor

‎04-17-2001 01:43 AM

‎04-17-2001 01:43 AM

Re: How to log down all commands silently?

Hmm.... in your case "sudo" may help, take a look at the following link

http://www.courtesan.com/sudo/

In summary what sudo does is that it allow an ordinary user to execute commands on behalf of the root user. In addition you could pre-define command set for the operators and all commands executed by them will be logged in the /var/adm/syslog/syslog.log file.

Rgds,
Philip
0 Kudos
Reply
Kenny Chau
Trusted Contributor

‎04-17-2001 02:17 AM

‎04-17-2001 02:17 AM

Re: How to log down all commands silently?

Thanks for your reply. Is it possible to use existing commands to finish this task? I had even tried to use 3>&2 / 2>&1 / 1>&3, etc to log down the commands and output but failed. Hope someone can help me. Thanks.
Kenny
0 Kudos
Reply
Vincenzo Restuccia
Honored Contributor

‎04-17-2001 02:22 AM

‎04-17-2001 02:22 AM

Re: How to log down all commands silently?

You can use 2>&1.
0 Kudos
Reply
Kenny Chau
Trusted Contributor

‎04-17-2001 02:34 AM

‎04-17-2001 02:34 AM

Re: How to log down all commands silently?

I had tried 2>&1 before, but no output display, also, only log down the output but not the input commands.
Kenny
0 Kudos
Reply
Steven Sim Kok Leong
Honored Contributor

‎04-17-2001 03:29 AM

‎04-17-2001 03:29 AM

Re: How to log down all commands silently?

Hi,

Install and use Expect.

Using a script such as the following allow you to log both the commands as well as the output (while running in a korn shell) into a log file called /traces/logfile.
==
#!/usr/local/bin/expect

log_user 0
log_file /traces/logfile
spawn "/usr/bin/ksh"
interact
==

Hope this helps. Regards.

Steven Sim Kok Leong
Brainbench MVP for Unix Admin
http://www.brainbench.com
0 Kudos
Reply
Steven Sim Kok Leong
Honored Contributor

‎04-17-2001 03:32 AM

‎04-17-2001 03:32 AM

Re: How to log down all commands silently?

Hi,

I forgot to mention that by using the Expect script, you eliminate the problem you encounter while using the "script" command ie. "The script command will show the log begins and the log file name and this is the one that I don't want."

Hope this helps. Regards.

Steven Sim Kok Leong
Brainbench MVP for Unix Admin
http://www.brainbench.com
0 Kudos
Reply
Jim Moffitt_1
Valued Contributor

‎04-17-2001 05:31 AM

‎04-17-2001 05:31 AM

Re: How to log down all commands silently?

Kenny, you had the right idea with the tee command. Use this with sudo and you will have total accountability and the output that you need put into a log and in a separate log, that you can specify you will have your sudo log of all commands.
0 Kudos
Reply
Kenny Chau
Trusted Contributor

‎04-17-2001 05:37 AM

‎04-17-2001 05:37 AM

Re: How to log down all commands silently?

Thanks for your reply. But is it possible to use existing commands to complete this task?
Kenny
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.