From: Karel Zak <kzak@redhat.com>
To: Jesper Dahl Nyerup <nyerup@one.com>
Cc: util-linux@vger.kernel.org, Vedpal Rajera <vedpalr@one.com>,
Martin Topholm <mph@one.com>
Subject: Re: Using script(1) to log all user sessions
Date: Mon, 28 Apr 2014 09:13:20 +0200 [thread overview]
Message-ID: <20140428071320.GK2405@x2.net.home> (raw)
In-Reply-To: <20140425082133.GA3790@one.com>
On Fri, Apr 25, 2014 at 10:21:34AM +0200, Jesper Dahl Nyerup wrote:
> Firstly, script(1) is clearly and sanely designed to be invoked from the
Well, from my point of view it current code is a bit fragile regards
to signals. Maybe it would be nice to use signalfd() and check for
signals together with changes on master/slave file descriptors by
select/poll. But this is not so important for your plans.
> command line to record a limited portion of a user's session. In order
> for the user to have the logging started without manual invocation, it
> may come in handy to support config files, to supply configurable
> default values for some of the concepts normally passed in the
> environment or as command line arguments.
OK.
> Secondly, we're considering to add functionality for script(1) to
> transmit the session transcript over the network to a collection daemon,
> to be able to store transcripts from multiple machines on one or more
> central systems.
Hmm.. "Every program attempts to expand until it can read mail. Those
programs which cannot so expand are replaced by ones which can."
I like git concept: here are files and it's your problem to transfer the
staff over the network. You can use rsync, http, ssh, ...
Maybe all you need is to store timing and typescript data to the one
place (e.g. /var/log/typescripts/user/<timestamp>.{session,timing})
and use ssh or so to transfer the data to another place.
> 1. Adding a daemon next to script(1) and scriptreplay(1), eg.
> scriptcollect(1), to be in the receiving end of the traffic, optionally
> handling the timing functionality, and finally storing data in the same
> manner script(1) would.
Seem like overkill.
> 2. Optionally linking against some crypto library to avoid putting
> users' console data on the wire in clear text.
Yep, but we have generic solutions like ssh, again see git.
Karel
--
Karel Zak <kzak@redhat.com>
http://karelzak.blogspot.com
next prev parent reply other threads:[~2014-04-28 7:13 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-04-25 8:21 Using script(1) to log all user sessions Jesper Dahl Nyerup
2014-04-25 14:27 ` Dale R. Worley
2014-04-25 17:39 ` Jesper Dahl Nyerup
2014-04-26 21:27 ` Jesper Dahl Nyerup
2014-04-27 19:53 ` Ángel González
2014-04-29 10:00 ` Jesper Dahl Nyerup
2014-04-29 10:42 ` Karel Zak
2014-04-29 11:10 ` Jesper Dahl Nyerup
2014-04-28 7:13 ` Karel Zak [this message]
2014-04-29 11:05 ` Jesper Dahl Nyerup
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20140428071320.GK2405@x2.net.home \
--to=kzak@redhat.com \
--cc=mph@one.com \
--cc=nyerup@one.com \
--cc=util-linux@vger.kernel.org \
--cc=vedpalr@one.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox