SUMMARY: Logging user activities

From: Mark Fergusson (MFerg@ddntl.didata.co.za)
Date: Thu Oct 10 1996 - 01:44:51 CDT


Thanks to all who replied.

David Evans
For 1. there are various wrapper programs available off the net. These
are called from inetd.conf. All the details are in the man pages and
are available from your local security type site. The tcp wrappers we
use come from ftp://ftp.win.tue.nl/pub/security and is called
tcp_wrappers.

For 2. use wu-ftp or other such ftp daemon. We use wu-ftp. Its available
from wuarchive.wustl.edu.

JimMeritt
Turn on standard system accounting. See "lastcomm"

Daniel Blander
Via things like sniffing tools, the "Sniffer" and tools like snoop on
Sun's,
you can sniff for specific IP addresses and log everything that passes
down
the wire....Then using tools like perl, you can parse the output for
just the
datagram stuff.....

Regards,

=============================================
Mark Fergusson Voice: (+27) - 31 - 838333
Dimension Data Fax: (+27) - 31 - 848525
PO Box 20713 Cellular: 082-4465-118
Durban North Email: mferg@ddntl.didata.co.za
4016
South Africa Web: http://www.didata.co.za
=============================================



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:11:11 CDT