LinuxQuestions.org - user priviledge escalation

- Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)

- - user priviledge escalation (https://www.linuxquestions.org/questions/linux-newbie-8/user-priviledge-escalation-4175638943/)

jolintan

09-22-2018 02:25 AM

user priviledge escalation

I'm using redhat linux 6.1, I find new user tianbu created two weeks ago, I suspect the linux server is compromised by this user with root right, how can we track any priviledge escalation by this user? any history can be tracked?

ondoho

09-22-2018 02:30 AM

you should be able to provide much more information than this, and consequently at least half answer your own querstion.
please read the first link in my signature.

BW-userx

09-22-2018 07:45 AM

logging users actions, then reading them or the log(s). simple as that.

All times are GMT -5. The time now is 02:38 AM.