[Mageia-sysadm] ldap write log

Michael Scherer misc at zarb.org
Mon Dec 6 19:26:56 CET 2010


Hi,

while discussing on irc, we came to the conclusion that it would be nice
to get some audit ( by sending mail ) when a user change group, or when
a user is promoted.

A way to do that would be to use the accesslogs overlay, with a cronjob
to get data from it, and to send them by mail and/or store them too, if
needed.

What do you think ?

How long should we keep the log ? 

Does someone see a problem, or a better idea ?

Obviously, we will need to be careful about what is sent and where, for
privacy reason. 

-- 
Michael Scherer



More information about the Mageia-sysadm mailing list