Red Hat Bugzilla – Bug 1258042
Please explicitly document that pam_tty_audit is recording tty _input_ only
Last modified: 2015-11-24 08:02:49 EST
Document URL: https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html-single/System_Administrators_Guide/index.html#sect-Gaining_Privileges-The_sudo_Command
(I can’t find a version number or reference; so “current as of today”.)
Section Number and Name: 4.2. The sudo Command
Describe the issue: This chapter mentions pam_tty_audit “to enable TTY auditing for specified users”. Please clarify that this will record TTY input only; I have had a confused user contact me about this.
(AFAICS most other documents available through access.redhat.com, e.g. the 5.3 release notes and the RHEL 6 Security Guide, are already clearly saying TTY input; if there are other documents I have missed, please update them as well.)