Documentation presents wrong info about sudosh and input logging

Description

  • The simp documentation incorrectly reports that sudosh records and replays user input.

  • SIMP configures sudosh as an output logger and uses pam_audit_tty to record input.

  • The documentation should explain that as a safeguard against recording sensitive credentials (such as passwords), both sudosh and pam_audit_tty do NOT record when `echo` is turned off.

Acceptance Criteria

None

Activity

Show:
Chris Tessmer
August 21, 2017, 7:07 PM

updated session auditing documentation

Epic Link

None

Story Points

None

Components

Assignee

Chris Tessmer

Affects versions

Priority

Medium
Configure