From owner-freebsd-questions@FreeBSD.ORG  Tue Feb  6 12:25:03 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: questions@freebsd.org
Delivered-To: freebsd-questions@FreeBSD.ORG
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 3C6C516A401
	for <questions@freebsd.org>; Tue,  6 Feb 2007 12:25:03 +0000 (UTC)
	(envelope-from wmoran@collaborativefusion.com)
Received: from mx00.pub.collaborativefusion.com
	(mx00.pub.collaborativefusion.com [206.210.89.199])
	by mx1.freebsd.org (Postfix) with ESMTP id D3A1313C48D
	for <questions@freebsd.org>; Tue,  6 Feb 2007 12:25:02 +0000 (UTC)
	(envelope-from wmoran@collaborativefusion.com)
Received: from vanquish.pgh.priv.collaborativefusion.com
	(vanquish.pgh.priv.collaborativefusion.com [192.168.2.61])
	(SSL: TLSv1/SSLv3,256bits,AES256-SHA)
	by wingspan with esmtp; Tue, 06 Feb 2007 07:25:02 -0500
	id 00056414.45C8739E.00002ACE
Date: Tue, 6 Feb 2007 07:25:01 -0500
From: Bill Moran <wmoran@collaborativefusion.com>
To: David Schulz <mailinglists@tca-cable-connector.com>
Message-Id: <20070206072501.a57ba17e.wmoran@collaborativefusion.com>
In-Reply-To: <8845689B-F8CA-4CEB-A712-244AA7578B14@tca-cable-connector.com>
References: <8845689B-F8CA-4CEB-A712-244AA7578B14@tca-cable-connector.com>
Organization: Collaborative Fusion
X-Mailer: Sylpheed 2.3.0 (GTK+ 2.10.7; i386-portbld-freebsd6.1)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Cc: FreeBSD Questions <questions@freebsd.org>
Subject: Re: User Monitoring
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Feb 2007 12:25:03 -0000

In response to David Schulz <mailinglists@tca-cable-connector.com>:

> Hello all,
> 
> i would like to provide a SSH Login for selected people on a  
> dedicated Machine, to be a little bit of a playground to some who  
> dont have any Unix experience and so on.
> 
> Without a doubt i will get the one or the other trying to do  
> something nasty to the Box, so my question is how to keep track of  
> what Users are doing? Using process accounting as described http:// 
> www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/security- 
> accounting.html in the handbook?
> 
> Can you share some easy to implement tricks to keep the worst from  
> happening to my Machine?

Have a look at security/sudosh ... it won't prevent anything, but it
will allow you to monitor what folks do.

-- 
Bill Moran
Collaborative Fusion Inc.