http://www.osnews.com/story/20249/KornShell_93_Auditing Exploring the Future of Computing en-us Copyright 2001-2012, David Adams adam+nospam@osnews.com Wed, 15 Feb 2012 13:57:13 GMT http://www.osnews.com/images/osnews.gif http://www.osnews.com http://www.osnews.com/thread?329305 http://www.osnews.com/thread?329305 What a neat document. IBM has a lot of these little mini-unix-whitepapers that are always fun to read. Historically, I have really disliked ksh and never wanted to use it, but this brings an interesting perspective, but I like zsh :o) Fri, 05 Sep 2008 00:14:00 GMT donotreply@osnews.com (pinochet) Comments http://www.osnews.com/thread?329378 http://www.osnews.com/thread?329378 Pretty great feature to be sure, and long overdue. However it's not exactly a watertight solution. It's better than nothing, but I think it would not be difficult to get around this logging, starting with firing up a different shell, or masking your commands by running them in a script.

At one time a truly excellent solution for shell auditing was the OSS project Enterprise Audit Shell, but unfortunately that project was quickly shut down when the source code was bought by some company that turned it into a commercial product.

I've always thought that taking up the last version of the source that was released and running w/it would be a great OSS project to get involved with, but I have no time for it. Fri, 05 Sep 2008 18:08:00 GMT donotreply@osnews.com (mmcgreal) Comments http://www.osnews.com/thread?329451 http://www.osnews.com/thread?329451 I can imagine the first command that anyone who wants to get actual work done would issue would be "bash" or "zsh"

Granted the auditing is probably INTENDED as soimething to run on a server to try and catch hackers, but the potentials for abuse are, to put it mildly, immense. Sat, 06 Sep 2008 18:44:00 GMT donotreply@osnews.com (madcrow) Comments