Is it possible to audit the disabling of bash history or environment variables - HowtoForge Forums

		HowtoForge Forums \| HowtoForge - Linux Howtos and Tutorials > Linux Forums > Installation/Configuration
Is it possible to audit the disabling of bash history or environment variables

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.

Thread Tools

Display Modes

28th June 2012, 07:10

responsys_cm responsys_cm is offline

Junior Member

Join Date: Jun 2012

Posts: 1
Thanks: 0
Thanked 0 Times in 0 Posts

Is it possible to audit the disabling of bash history or environment variables

I've seen a number of posts by Anonymous detailing how they have hacked into some of their victims. The first thing they do when they get a shell is disable the bash history.

It seems that set, unset, and history are "internal" commands to the OS and don't have an executable associated with them. Is there a way to audit users who unset their history file or run history -c?

Thx.

Craig

Tags

auditing

« Previous Thread | Next Thread »

Thread Tools
Show Printable Version Email this Page
Display Modes
Switch to Linear Mode Switch to Hybrid Mode Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Email problem 'Cannot set my user or group id.' (using ISPConfig 3 + OpenSuSE 11.2)	urosm	Installation/Configuration	5	19th June 2010 22:41
RHEL 5 environment variables	g00ner	Installation/Configuration	1	1st January 2009 11:01
i am having some problem ?	cobro	Installation/Configuration	20	30th April 2008 16:26
Cannot log onto pop3 server Debian Etch Perfect Server	docean	Installation/Configuration	2	19th March 2008 00:23
https protocol stops page load	tjd	General	7	18th November 2007 18:06

All times are GMT +2. The time now is 06:59.

Navigation

Facebook

News

Recent comments

Newsletter