sudosh can be used as a default login shell or a filter that takes advantage of PTY devices in order to sit between the user's keyboard and a program, in this case a shell. It was designed specifically to be used in conjunction with sudo, and allows the execution of a root or application shell with logging. It is basically a VCR and will record root shell sessions and also has the ability to play back the sessions as they were originally recorded. It records all input/output, keyboard input, and timing information so that the session can be played back in the original format.
|Tags||Logging Monitoring Operating Systems Shells Systems Administration|
|Operating Systems||POSIX AIX BSD HP-UX IRIX Linux SCO Solaris Unix|
Release Notes: Utilizes ITIL best practices. An enterprise view of Unix access. Enterprise-level audit reporting tools for Sarbanes-Oxley. Customizable audit reports via CSS. An embedded transactional SQL92 relational database. Load balancing. Disaster recovery. SSL encryption and PKI authentication. The ability to audit file transfers and remote command execution. Configurable default shells. Audit logs are digitally signed for integrity. Client and server configuration files for easy management. Idle session timeout. Displays corporate policy before each session.
Release Notes: getopt_long caused problems with Solaris; it has been changed to getopt.
Release Notes: sudosh-replay has been ported to C. Configuration file support has been added. This release is not backwards compatible with pre-1.6.2.
Release Notes: A file delimiter bug in sudosh-replay was corrected. The dependency for the TERM environment variable was removed, as it now defaults to "dumb". sudosh can be used as a default login shell and works with scp and rsync.
Release Notes: Sudosh can now be used as a default login shell.