New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Logging changes made on VPS.
varunchopra
Member
in Help
So, context:
I'm buying an application (expensive af), that requires the vendor to have access to the server for him to install it.
Is there a way to keep comprehensive logs of what he does in the server? I'd like to know everything he does. Centos 6, if it matters.
Comments
You're gonna have a bad time. WHMCS and SolusVM doesn't even require this
This thread has literally nothing to do with hosting.
Possibly auditd? Never used myself so not too sure about it's capabilities or ease of use/configuration.
https://linux.die.net/man/8/auditd
Trying to point out your literal bad decision to let a developer access your server to setup something which documentation should be able to do.
Who said there's documentation?
I've seen this but it isn't particularly friendly or readable.
bash? You can get command-line level from running 'script', it's builtin.
Was just about to suggest this.
@varunchopra
Use tripwire/aide -- I get comprehensive logs that tell me what's been modified in my servers.
Looking for something way more detailed. The guy's gonna be making a lot of changes, and I need to see what, when and how things were happening.
Tripwire seems neat. Will check it out.
Make them use a configuration management tool. It makes zero sense to be installing any complex and expensive software manually on each server you run. Audit before the fact, not after it.
I recommend tripwire.
Also, setup a slave for SQL/etc if you want to see what's going on there. Setup a filesystem that takes snapshots and take one before he starts.
Be like this guy
did you ever watch tim and eric awesome show?
Did it.
Also set up Tripwire.
Time to wait in the bushes now.
Nope, but I'm willing to give it a try if you recommend it. It will go right after that Reno 911 show I'm getting my hands on
you'll never be the same again lol
check it out
I've never watched T&E, because I think Cartoon Network and the shows on there are generally by-and-for burnouts. However, I am on the internet so I know most of the memes.
Here's an idea, it's so crazy that it might even work:
git add -A /
Once the vendor is done with their installation,
git status
at the root of the VPS will tell you exactly what they have done.Same, but dd the disk image to a file, then do a dd state-n-compare between the local drive and the stored image.
Windows is leaps and bounds ahead of Linux in this game: myriads of keyloggers and RATs with screen recording at your disposal. Really, linux, wtf is your problem?!
There are tools available. Check out the Vault 7 Repo. You might need to apply for commit access.
Not until Linus will fix that https nonsense! My totally legitimate gov organization doesn't need any encryption yo.
Vault 7 has supported Lets Encrypt since 0-day, I mean.. day 0. ( @bsdguy this is for you)