Projects / Snoopy Logger

Snoopy Logger

Snoopy is designed to aid the task of a sysadmin by providing a log of commands executed. Snoopy is completely transparent to the user and applications. It is linked into programs to provide a wrapper around calls to execve(). Logging is done via syslogd and written to authpriv, allowing secure offsite logging of activity.

Tags
Licenses
Operating Systems
Implementation

Recent releases

  •  10 Feb 2010 11:25

    Release Notes: Autotools is now used. The code was fixed for 32-bit and 64-bit OSes.

    •  21 Dec 2000 03:40

      Release Notes: Integrity checking, a new method of logging, and faster logging.

      •  13 Oct 2000 05:56

        Release Notes: This release fixes a menacing bug.

        •  03 Aug 2000 19:02

          Release Notes: Cleanups to the codebase, addition of the output of username and sid (PID of the login shell) to the logged output, and a fix for install.sh to be compatible with older (v1.0) bash shells.

          •  31 Jul 2000 13:03

            Release Notes: Initial release.

            Recent comments

            20 Dec 2000 23:40 ellyhiggin

            Re: Great!
            A user can get around the logging by creating a shared library that wraps the calls to syslog() and openlog() to do something useless, then preload that library and spawn a new shell.

            Wouldn't BSD process accouting be more suitable to do this sort of logging.

            01 Aug 2000 22:33 gtk

            Great!
            I have been looking for something like this. I have seen some other solutions that involve stuff like patching the shell and this seems to be a much better general solution.

            Is there no way for ordinary users to circumvent the logging?

            01 Aug 2000 09:44 mariusae

            Snoopy Logger
            There was a small bug in the installation script that caused incompatibility with bash 1.x. This is fixed in the version that is linked here now.
            Thanks to agibson@ptm.com for notifying us of this incompatibility.

            Screenshot

            Project Spotlight

            OpenStack4j

            A Fluent OpenStack client API for Java.

            Screenshot

            Project Spotlight

            TurnKey TWiki Appliance

            A TWiki appliance that is easy to use and lightweight.