[tac_plus] cmd=connect
Munroe Sollog
mus3 at lehigh.edu
Tue Apr 14 16:28:42 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I'm using tac_plus as an audit history for all users, and I'm noticing that the accounting log is
logging:
cmd=connect <enable password> <cr>
I believe it is whenever someone types in 'enable' <cr> '<enable password>'
Does this make sense, and if so any advice on how to get tac_plus to not save the password in the
audit log?
for reference:
$ tac_plus -v
tac_plus version F4.0.4.27a
ACLS
FIONBIO
LIBWRAP
LINUX
LITTLE_ENDIAN
LOG_DAEMON
PAM
NO_PWAGE
REAPCHILD
RETSIGTYPE RETSIGTYPE
SHADOW_PASSWORDS
SIGTSTP
SIGTTIN
SIGTTOU
SO_REUSEADDR
STRERROR
TAC_PLUS_PORT
UENABLE
__STDC__
Thanks.
- --
Munroe Sollog
LTS - Network Analyst
x85002
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQEcBAEBAgAGBQJVLUA5AAoJEPbbZiWCKDVCIcsH/0MMz1sYAQFY4FXMzLUrKa0E
IYJxEuM7QWkQ6wIfFhdf51xOBuepKytGK3JlWuGZaZMdENgEZj/bD4BNxS+4ukAj
fR8xuQSy6AooQLYgdcfJYd/g7udhVmrhBhCDCGQz3HCHKfJyp2V4XmCZPfMVy7EA
7NMhfbPto7nPEkVtDqrjBShgXohrf0OtMXMbdWxljJ+W7P/+nEc4+vfRz/CSpd1a
PnHlwYLRaBIo921xB7I3SiPJqUPhI8i8s52HuzcmJacfT5TypQ9pY08X712QUztJ
zpsFsX2xS3tyWingWKhrqWMtuFpFIWwTeQ7mIOqqd5NTHDhL3DupC1jBOWp2vfA=
=FXGG
-----END PGP SIGNATURE-----
More information about the tac_plus
mailing list