Wrt GNU/Linux, for logging command-line plus output, see 'rootsh' and the "syslog" switch. For remote logging of 'rootsh' output see /etc/syslog.conf. Also please search the Linux Security forum for PCI-DSS (as in logging requirements). What you request does not have a single tool solution, so correlating data will be important.
Last edited by unSpawn; 01-16-2010 at 06:05 AM.
Reason: //More *is* more
|