Tracking password changes

Discussion in 'Site & Server Administration' started by mypoint, Apr 3, 2009.

0
  1. #1
    Hi I am wondering if it is possible to see the root password changes? does it get saved into a log file? Please let me know thanks.

    If the changes do not get saved please let me know how i can activate this.
     
    mypoint, Apr 3, 2009 IP
  2. Camay123

    Camay123 Well-Known Member

    Messages:
    3,423
    Likes Received:
    86
    Best Answers:
    0
    Trophy Points:
    160
    #2
    I dont believe this is possible, and I wouldnt want such thing on my server, or the log should at least be encrypted+salt , then encrypted again
     
    Camay123, Apr 3, 2009 IP
  3. mypoint

    mypoint Well-Known Member

    Messages:
    985
    Likes Received:
    6
    Best Answers:
    0
    Trophy Points:
    110
    #3
    Well dont want it to show the actauly password, just want it to show the ip of who changed it and the date and time. thats what i need in the log.

    let me know thanks!
     
    mypoint, Apr 3, 2009 IP
  4. ClassHelper.org

    ClassHelper.org Guest

    Messages:
    273
    Likes Received:
    14
    Best Answers:
    0
    Trophy Points:
    0
    #4
    I believe the Snort intrusion detection system allows you to track such changes, and a whole lot more. Hope this helps :).
     
    ClassHelper.org, Apr 4, 2009 IP
  5. kailash

    kailash Well-Known Member

    Messages:
    1,248
    Likes Received:
    42
    Best Answers:
    0
    Trophy Points:
    190
    #5
    Install configserver security&firewall (CSF). It will notify you instantly whenever the root password is changed. But I think it will not give you the IP address.. Need some research here...
     
    kailash, Apr 4, 2009 IP
  6. Kaoz

    Kaoz Peon

    Messages:
    767
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #6
    You can log the logins/stuff done via root, check google out for more information.
     
    Kaoz, Apr 4, 2009 IP