Can I log vi activity?

linux vi logging

Solution 1:

You can also turn on process accounting ( s/can/should/ !)

You can then use:

lastcomm(1)

to see the command run and if they were run after a fork, with or without an exec.

Combined with a host based IDS this should give you what you need "that the King's justice may be done upon him."

Solution 2:

How are you logging their activities right now? The easiest is to block them from launching shells from vi.

# vi /home/user/.exrc
set exrc
set shell=/bin/false
# chown root:root /home/user/.exrc
# chmod 644 /home/user/.exrc
# chattr +i /home/user/.exrc

If you're using a special shell to log their commands, you could change vi to use that shell only.

Related

Adding Subject Alternate Names (SAN) to an existing Cert Signing Request (CSR)
Will setting up a VM with more than 1 cpu/ core actually improve performance?
Finding out who has modified a Stored Procedure on SQL Server?
UNIX permissions to allow group users to kill each others' processes
SSH-forwarded X11 display from Linux to Mac lost after some time
How Serviceable are Tape Drives?
GeoIP for configuration into nginx
Why can't I create this gluster volume?
Apache not finding folder on File System; Appending "\xe2\x80\x9d" to end of File Paths
Firewalld CentOS 7 Masquerading
Get login name using email address with Powershell
LXC container not starting