From owner-freebsd-questions@FreeBSD.ORG Mon Jul 30 13:11:10 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C0EDA16A418 for ; Mon, 30 Jul 2007 13:11:10 +0000 (UTC) (envelope-from mnslinky@gmail.com) Received: from py-out-1112.google.com (py-out-1112.google.com [64.233.166.180]) by mx1.freebsd.org (Postfix) with ESMTP id 7E58213C45D for ; Mon, 30 Jul 2007 13:11:09 +0000 (UTC) (envelope-from mnslinky@gmail.com) Received: by py-out-1112.google.com with SMTP id a73so2969518pye for ; Mon, 30 Jul 2007 06:11:09 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:in-reply-to:references:mime-version:content-type:message-id:cc:content-transfer-encoding:from:subject:date:to:x-mailer; b=a1Ip4tnajiRgML+xbD66C80pzGYXG9l9jlAY4nzdUEHc8gAoOHhaslsc34wFSkarT+gB9j90uVRy/zSEU4cNpfUbTnu1daDSKJvy76W9nyyQ02TcLObUrKmtPgNBiAKcaHt8qhrbM6vJ3eqSUYYRyYmkOqH2kJq4foxzN/VE7c4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:in-reply-to:references:mime-version:content-type:message-id:cc:content-transfer-encoding:from:subject:date:to:x-mailer; b=PZbjdcOBIC48LTe5+TrYp7nvimPsjcMPXaxPHVsHoc0c6UU+z4JPuo0s473Mmyw4yZk+qkbqZFM939hVzenWAj1gpKTZ+L+X5H7m4h88aWTpj7049dSQLBUuEa/7Tmusdg+/3G/7rvnvP8LVDX+M2SVQU75sHvQub3DzcLE0tj8= Received: by 10.35.68.16 with SMTP id v16mr9568785pyk.1185801069114; Mon, 30 Jul 2007 06:11:09 -0700 (PDT) Received: from ?10.0.0.14? ( [74.95.66.25]) by mx.google.com with ESMTPS id a70sm4368607pye.2007.07.30.06.11.08 (version=SSLv3 cipher=OTHER); Mon, 30 Jul 2007 06:11:08 -0700 (PDT) In-Reply-To: <46ADDAC2.3010404@crackmonkey.us> References: <050b01c7ce16$960a0570$6400a8c0@msdi.local> <1185794014.1444.7.camel@localhost> <46ADDAC2.3010404@crackmonkey.us> Mime-Version: 1.0 (Apple Message framework v752.3) Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Eric Crist Date: Mon, 30 Jul 2007 08:11:06 -0500 To: Adam J Richardson X-Mailer: Apple Mail (2.752.3) Cc: Tom Evans , freebsd-questions@freebsd.org, Ian Lord Subject: Re: Root access loggin X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 30 Jul 2007 13:11:10 -0000 On Jul 30, 2007, at 7:34 AMJul 30, 2007, Adam J Richardson wrote: > Tom Evans wrote: >> This seems great in principle, but of course, you just gave them a >> root >> shell, and so they can delete their log file easily enough... > > You could have cron email it to you every 5 minutes. Unlikely he'd > check the crontab immediately, unless he was really bent on the > system's destruction. Likely you'd have at least some evidence of > his behaviour. Of course your email box would fill up quickly. > > Adam J Richardson > Tom, If you're really all that worried about this, don't give them root access. You could simply sit at the console with them while they work. IIRC, they're a contractor, not an employee. Your presence during such operations wouldn't be abnormal for a contractor. HTH Eric Crist