Dear Fellow Managers,
I have a problem that perhaps you might have already solved and was
wondering if you would be willing to advise me as to how I should
proceed. Let me describe the scenario.
We have two GS160s configured as a cluster with a terminal server
connected to the console of each of the GS160 systems.
The situation is as follows. We have technicians and consultants who
occasionally need to dial into the consoles to carry out troubleshooting
and repairs for us. However our site rules do not permit me to admit
them without being able to log all of their activities in some kind of
tamperproof way. In particular, I need to record the exact commands
that they enter and, if possible, also record the exact responses they
get from the machines. I need to make this happen even if they should
shut down the node, or bring it down to single-user mode or disable
auditing and syslogd.
To do this, it seems that I would need to record their keystrokes and
the characters the computers return in reply to their commands. Now the
solution I was originally thinking of was to put the modem on a
minimally configured Alpha and use that to field the dial-in session and
then redirect it to the console ports of the GS160s while copying the
keystrokes and storing it on the Alpha system. However, I am not sure
how to "tap the line" and actually copy the typed characters as well as
the response characters to a file while allowing those same characters
to go on to the console ports of the GS160s. So if it can be done, how
can I do it?
Now my plan might not even be sound so feel free to suggest a better way
to log the commands.
Yours sincerely,
Robert Honore.
Received on Tue Jun 24 2003 - 18:41:12 NZST