LinuxQuestions.org
Review your favorite Linux distribution.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise
Reload this Page files modified ?
User Name
Password
Linux - Enterprise This forum is for all items relating to using Linux in the Enterprise.

Notices


Reply
  Search this Thread
Old 03-12-2007, 07:11 AM   #1
sachin1361
Member
 
Registered: Feb 2007
Posts: 126

Rep: Reputation: 15
files modified ?

Can anybody create a command/script which consists of log events of all commands executed or files modified by any host ,say 1.1.1.1, and the output of that command is redirected to any log file . I donot know much abt advanced linux commands or scripting .

find /etc -mtime -10 >/change.log

it redirects all files modifed since last 10 min. to change.log file but pl modify it so that i can log all events ,which are executed by remote host , in this file so that i could be able to know which files are modified by unknown hosts or anybody else.

I know about tripwire or AIDE. but there must be any way else to do this
 
Old 03-13-2007, 03:11 AM   #2
b0uncer
LQ Guru
 
Registered: Aug 2003
Distribution: CentOS, OS X
Posts: 5,131

Rep: Reputation: Disabled
I would stick to programs like tripwire because they're developed for this; using shell scripts might be a waste of resources, like running find every 10 minutes all over your entire system for example.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
which files have modified in the last few days ? varun_saa Mandriva 6 03-10-2007 10:34 AM
gnu make recompiles the source files fully even though the files are not modified yasothamani Linux - Software 4 02-07-2007 06:36 AM
files modified by adduser flying-tuxman Linux - Newbie 1 01-07-2006 07:48 PM
Files modified by switchdesk benjaminrtz Linux - General 1 01-25-2003 10:05 AM
How would you check which files had been modified? entm Linux - General 1 05-14-2002 09:11 AM

LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise

All times are GMT -5. The time now is 09:55 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration