1387515 – [RFE] centralized sudo iolog

Bug 1387515 - [RFE] centralized sudo iolog

Summary: [RFE] centralized sudo iolog

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	sudo
Sub Component:
Version:	7.4
Hardware:	All
OS:	All
Priority:	unspecified
Severity:	high
Target Milestone:	rc
Target Release:	---
Assignee:	Daniel Kopeček
QA Contact:	BaseOS QE Security Team
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1387516 1420851
TreeView+	depends on / blocked

Reported:	2016-10-21 07:31 UTC by Daniele
Modified:	2019-12-16 07:15 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2017-06-21 19:07:48 UTC
Target Upstream Version:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Daniele 2016-10-21 07:31:30 UTC

1. Nature and description of the request: 
Centralization of sudo-io logging.

2. List the business requirements: 
We need to have sudo-io logging directly streamed over network, because keep it in the local server may lead to security problems.

3. How would you like to achieve this? (List the functional requirements here) 
We would like to implement it through syslog, 
keeping the possibility to have sudoreplay on the remote side.
Other ideas or requiremets can be found in 
https://www.sudo.ws/pipermail/sudo-users/2011-September/004800.html

4. Does you have any specific timeline dependencies and which release would you like to target (i.e. RHEL5, RHEL6)? 
Target: RHEL6 and RHEL7, if possible on 6.9 and 7.3.

5. Would you be able to assist in testing this functionality if implemented?
Of course.

Note You need to log in before you can comment on or make changes to this bug.