25 JAN 2015, JK Benedict thexenfomation@gmail.com | @xenfomation
A series of tweaks to the global BASH profile and HISTORY options: intended for XenServer(s) running 6.0.2 or higher.
The reason behind all this is, at the moment, XenServer does not use shadow passwords and essentially everything is ran as "root". In an environment where many may have these types of credentials, it is nice to know WHO, WHAT, WHEN, WHERE, and FROM to determine any negative "WHY".
For XenServer, the "BASH Tweak" is intended to do the following:
- Add granularity to the normal "history" command, such as time, TTY, etc
- Add logging of user history to Syslog
- Adjust the output of the "history" command to identify, quickly, root based actions
- Download the bash-history-tweak.sh file
- Copy its contents and append them to THE END of /etc/bashrc
- Exit the current BASH session by typing exit
- Log back in
And from this point, history commands are logged to /var/log/user.log and the history command should be colorful and insightful.