Bug 1387515

Summary: [RFE] centralized sudo iolog
Product: Red Hat Enterprise Linux 7 Reporter: Daniele <dconsoli>
Component: sudoAssignee: Daniel Kopeček <dkopecek>
Status: CLOSED WONTFIX QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: high Docs Contact:
Priority: unspecified    
Version: 7.4CC: aperotti, cww, daniele, dconsoli, dkopecek, nikolai.kondrashov, pkis
Target Milestone: rcKeywords: FutureFeature, Triaged
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-06-21 19:07:48 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 1387516, 1420851    

Description Daniele 2016-10-21 07:31:30 UTC 
1. Nature and description of the request: 
Centralization of sudo-io logging.

2. List the business requirements: 
We need to have sudo-io logging directly streamed over network, because keep it in the local server may lead to security problems.

3. How would you like to achieve this? (List the functional requirements here) 
We would like to implement it through syslog, 
keeping the possibility to have sudoreplay on the remote side.
Other ideas or requiremets can be found in 
https://www.sudo.ws/pipermail/sudo-users/2011-September/004800.html

4. Does you have any specific timeline dependencies and which release would you like to target (i.e. RHEL5, RHEL6)? 
Target: RHEL6 and RHEL7, if possible on 6.9 and 7.3.

5. Would you be able to assist in testing this functionality if implemented?
Of course.