Welcome to /r/Linux! This is a community for sharing news about Linux, interesting developments and press. If you’re looking for tech support, /r/Linux4Noobs and /r/linuxquestions are friendly communities that can help you. Please also check out: https://lemmy.ml/c/linux and Kbin.social/m/Linux Please refrain from posting help requests here, cheers.
Members
•
Sudo to non root user
Hey Guys, New here. Need your help with one thing. So auditors have asked my team (systemadm) to monitor critical commands and figure out a way to restrict their use. By critical command I mean to say comma…
Welcome to /r/Linux! This is a community for sharing news about Linux, interesting developments and press. If you’re looking for tech support, /r/Linux4Noobs and /r/linuxquestions are friendly communities that can help you. Please also check out: https://lemmy.ml/c/linux and Kbin.social/m/Linux Please refrain from posting help requests here, cheers.
Members
•
Sudo to non root user
Hey Guys, New here. Need your help with one thing. So auditors have asked my team (systemadm) to monitor critical commands and figure out a way to restrict their use. By critical command I mean to say commands like chown -R , rm -rf . There have been mutliple incidents where my colleagues have missed a character here and there which led to catastrophic situations (deletion of entire application directory, system reboots). As of now what is do is use python on the command logs of my PAM tool..but that is a headache and also a reactive approach. I wish to implement a proactive approach. Your responses are much appreciated. If this kind off thing is implemented in your env ..please tell that as well