From: jr@scms.rgu.ac.uk
To: zsh-users@math.gatech.edu
Subject: Re: Question zsh
Date: Fri, 30 Oct 1998 08:52:10 +0000 (GMT) [thread overview]
Message-ID: <19981030085211.961.qmail@master.scms.rgu.ac.uk> (raw)
> } I wonder if there is posible to save the .zsh_history in their
> } directories /home/user1/.zsh_history but with no privileges from user1 to
> } modify it or deleted.
> } What I'm trying to do is to have a .zsh_history in users
> } directories that can save all the history of every single user in the
> } /home
>
> I'm not sure what this means.
I _think_ he wants each user to have a history file that they can't delete, as
a sort of audit trail of their activities.
Since this file is in their home area, they automatically have rights to
delete it (since the have rights to the directory it is contained in). You
could to set up a directory where they have execute permissions (111) and
write permission (222) to the log file which would achieve the desired result,
but they could cp /dev/null to the file to blank it.
You could hide the location, but a strings or truss could find the filename
location; making the zsh executable suid and immediately suid back to real
user ID would prevent truss, while making the permissions 111 would prevent
strings from working.
The other option is to fork an suid process to do the logging, but this
obviously has it's own set of security problems _or_ you could set up a daemon
to do the logging (through loopback interface using sockets?). Both methods
would require substantial rewriting of the code.
--
John Riddoch Email: jr@scms.rgu.ac.uk Telephone: (01224)262730
Room C4, School of Computer and Mathematical Science
Robert Gordon University, Aberdeen, AB25 1HG
"Just once, I wish we would encounter an alien menace that wasn't
immune to bullets" -- The Brigader, "Dr. Who"
next reply other threads:[~1998-10-30 8:58 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
1998-10-30 8:52 jr [this message]
-- strict thread matches above, loose matches on Subject: below --
1998-10-30 15:46 Jason Price
1998-10-30 21:20 ` TGAPE!
1998-10-30 4:52 Ono Soul
1998-10-30 6:02 ` Bart Schaefer
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=19981030085211.961.qmail@master.scms.rgu.ac.uk \
--to=jr@scms.rgu.ac.uk \
--cc=jr@master.scms.rgu.ac.uk \
--cc=zsh-users@math.gatech.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.vuxu.org/mirror/zsh/
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).