PAM is only for Authentication of users. What you are looking for is a form of kernel level auditing. You may want to look at SNARE (http://www.intersectalliance.com/projects/Snare/)
Good luck! Tim
Michael De Groat wrote:
Hello:
I'm new to using PAM so please bear with me. I need to be able to log any type of access to system files (/etc/passwd, etc) to syslog. I was told by a friend that PAM does this. Can anyone tell me or point me in a direction that might help me in this endeavor?
Thanks,
Michael
_______________________________________________ Pam-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/pam-list
