From 1be510f9529cb082f802408b472a77d074b394c0 Mon Sep 17 00:00:00 2001 From: Nicolas Vigier Date: Sun, 14 Apr 2013 13:46:12 +0000 Subject: Add zarb MLs html archives --- zarb-ml/mageia-sysadm/2010-December/001033.html | 101 ++++++++++++++++++++++++ 1 file changed, 101 insertions(+) create mode 100644 zarb-ml/mageia-sysadm/2010-December/001033.html (limited to 'zarb-ml/mageia-sysadm/2010-December/001033.html') diff --git a/zarb-ml/mageia-sysadm/2010-December/001033.html b/zarb-ml/mageia-sysadm/2010-December/001033.html new file mode 100644 index 000000000..5117069e7 --- /dev/null +++ b/zarb-ml/mageia-sysadm/2010-December/001033.html @@ -0,0 +1,101 @@ + + + + [Mageia-sysadm] ldap write log + + + + + + + + + +

[Mageia-sysadm] ldap write log

+ Leandro Dorileo + ldorileo at gmail.com +
+ Mon Dec 6 20:16:47 CET 2010 +

+
+ +
Hi Michael
+
+On Mon, Dec 6, 2010 at 3:26 PM, Michael Scherer <misc at zarb.org> wrote:
+> Hi,
+>
+> while discussing on irc, we came to the conclusion that it would be nice
+> to get some audit ( by sending mail ) when a user change group, or when
+> a user is promoted.
+>
+> A way to do that would be to use the accesslogs overlay, with a cronjob
+> to get data from it, and to send them by mail and/or store them too, if
+> needed.
+>
+> What do you think ?
+
+Seems to work well, there`s even an audit logging overlay that may fit better.
+
+>
+> How long should we keep the log ?
+
+
+I understand it depends on security issues, how long is it possible to
+break a system by someone with wrong credentials? :)
+
+
+>
+> Does someone see a problem, or a better idea ?
+
+
+As far as I know overlays may be extended or customized, with some
+time and manpower it could be possible do write an overlay to directly
+send mails instead of parsing longs.
+
+
+>
+> Obviously, we will need to be careful about what is sent and where, for
+> privacy reason.
+
+
+sure..
+
+
+-- 
+Leandro Dorileo
+
+ + + + +
+

+ +
+More information about the Mageia-sysadm +mailing list
+ -- cgit v1.2.1