Sudoreplay Manual

Using sudoers in Linux to implement security is commonly done. Often administrators or operators allow themselves to 'sudo su -' to become root, without the need to know the root password. This is more comfortable as you don't need to type "sudo" in front of every command and your sudoers file becomes less exhaustive without the need to specify every command operators and sysadmins need.

However, enforcing everyone - even sysadmins - to prepend every command with "sudo" creates an audit trail when sudo logs to a file. This often required for compliancy reasons.

Now there is a command to playback sudo logs: Sudoreplay Manual.

No comments: