[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [SAGE] Re: Official sudosh announcement

To: William LeFebvre <bill@lefebvre.org>
Subject: Re: [SAGE] Re: Official sudosh announcement
From: Doug Hanks <dhanks@gmail.com>
Date: Fri, 1 Oct 2004 09:07:59 -0700
Cc: Tillman Hodgson <tillman@seekingfire.com>, sage-members@usenix.org
In-Reply-To: <415D6DA3.1060201@lefebvre.org>
References: <82a71f8a040929191517285252@mail.gmail.com> <82a71f8a0409300907459c3e6c@mail.gmail.com> <415D1B64.1030505@lefebvre.org> <415D66C0.9000700@cookie.org> <20041001143054.GE35869@seekingfire.com> <415D6DA3.1060201@lefebvre.org>
Reply-To: Doug Hanks <dhanks@gmail.com>
Sender: owner-sage-members@usenix.org

Thanks for the feedback.  I'll just ignore your attitude, because I
know it runs rampant in the technical community.

sudosh provides accountability through syslog.  Nothing else out there does.

Imagine this:

su -
Password:
# csh
% rm /usr/tivoli/tsm/ba/dsm.sys
% exit
# exit

There would be no way you could tell what happened after that user
went into the csh, because csh doesn't support shell history.

I'm completely aware that this argument goes into the level of whether
or not you trust people who have root access to the server.  As I
said, this is for larger companies that have 10+ system administrators
and only login to other servers for which they aren't directly
responsible for when they are oncall.

When you're oncall, get a page, and need to troubleshoot the last
thing you want to do is work inside the restrictions of sudo using one
command at a time.

What about sudo -s?  Same deal as the above example.  As Bill
mentioned, hopping that shell history will make you accountable and
SOX compliant is "disingenuous at best."  Shell history is much more
easily modified or just deleted altogether.

This is why I created sudosh.  It uses script to grab all the input
and output and throw it off to syslog to pipe off to a central log
server.

If you wanted to modify the output you would have to do so on at least
2 servers and get the formatting right.  Not to mention you would have
to explain the syslog gap on the loghost that covers the amount of
time you took to perform the work, unless you scripted it.

Point being is that sudosh is identical to sudo -s, except your stuff
goes to syslog.  I also suggest you send the syslog to a central or
distributed loghosts.

Thanks for the feedback,

On Fri, 01 Oct 2004 10:45:55 -0400, William LeFebvre <bill@lefebvre.org> wrote:
> Exactly.  To imply, as the original poster did, that sudosh provides the
> accountability that is needed for SOx compliance is disingenuous at best.

-- 
- Doug Hanks = dhanks(at)gmail(dot)com

Follow-Ups:
- Re: [SAGE] Re: Official sudosh announcement
  - From: William LeFebvre <bill@lefebvre.org>
- Re: [SAGE] Re: Official sudosh announcement
  - From: Cat Okita <cat@reptiles.org>
- Re: [SAGE] Re: Official sudosh announcement
  - From: "Adam S. Moskowitz" <adamm@menlo.com>

References:
- [SAGE] Official sudosh announcement
  - From: Doug Hanks <dhanks@gmail.com>
- [SAGE] Re: Official sudosh announcement
  - From: Doug Hanks <dhanks@gmail.com>
- Re: [SAGE] Re: Official sudosh announcement
  - From: William LeFebvre <bill@lefebvre.org>
- Re: [SAGE] Re: Official sudosh announcement
  - From: Allan West <allan@cookie.org>
- Re: [SAGE] Re: Official sudosh announcement
  - From: Tillman Hodgson <tillman@seekingfire.com>
- Re: [SAGE] Re: Official sudosh announcement
  - From: William LeFebvre <bill@lefebvre.org>

Prev by Date: Re: [SAGE] Re: Official sudosh announcement
Next by Date: Re: [SAGE] Re: Official sudosh announcement
Prev by thread: Re: [SAGE] Re: Official sudosh announcement
Next by thread: Re: [SAGE] Re: Official sudosh announcement
Index(es):
- Date
- Thread