0

I have set a deny permission on a group for a folder in Fedora 17. I want to generate logs when a user from this group is tring to access this denied folder.

Is it possible?

2
Contributors
3
Replies
10
Views
4 Years
Discussion Span
Last Post by rubberman
0

Personal opinion? Don't bother. It is not an infrequent event for people to try to access folders (directories) that they are not allowed to - often innocently. As long as it is blocked from them, then as the saying goes, "no harm, no foul".

0

It was for academic exercise, so i had to bother.
I finally work it out with audit package.
In case anyone else needs it, here it is:

yum install audit

chkconfig auditd on

auditctl -w /directory_you_want_to_audit -p war -k just_a_filter_key

//find out who changed or accessed /directory_you_want_to_audit

ausearch -f /etc/passwd

Thank you anyway!!!

1

Indeed, there are times when auditing is appropriate, especially with systems that have enhanced security requirements. This is why there are the SELinux extensions (Security Enhanced Linux) and implements access control lists, and such. You might want to look into that.

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.