Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Logging Traffic by user @ OpenSSH 3.8.1

from [Hardik Dalwadi] Network Security [Permanent Link]
Subject: Re: Logging Traffic by user @ OpenSSH 3.8.1
Date: Tue, 06 Sep 2005 10:18:00 +0530
Miro Dietiker, MD Systems wrote: 
Hi!

For a productive environment we are currently logging via iptables all
SSH traffic for specific machines. Due to the reason, that multiple
customers use SSH on that machine, we need to log the traffic amount of
each user.
Before, data transfer have most been done via ftp and www by our
customers. We like to provide ssh/sftp access or data tunnelling for all
customers on a shared machine, where the measurement of the usage per
customer seems not possible from my point of view. And in the same
moment all is out of controle!

Yes you are right, It's not possible to log the traffic of per user on lan.
for that you need trasport layer firewall like socks. IPTABLES are use for
implementing network layer firewall. I am using  IPTRAF for logging traffic
but it's not possible to log traffic in IPTRAF for per user bassis.


Current Development environment:
OpenSSH_3.8.1p1 Debian-8.sarge.4, OpenSSL 0.9.7e, 25Oct 2004

Is there anyone having an idea how to create a per user traffic log?

Thanks a lot!

+-------------------------------+  +-------------------------------+
| Miro Dietiker                 |  | MD Systems Miro Dietiker      |
| Dipl. Ing. FH Elektrotechnik  |  | Alte Zürcherstrasse 10        |
|                               |  | 8903 Birmensdorf              |
|                               |  |                               |
| Mobile:   +41 (0)78 707 30 10 |  | Geschäft: +41 (0)43 344 03 56 |
|                               |  | Fax:      +41 (0)43 344 03 57 |
| m.dietiker@md-systems.ch      |  | info@md-systems.ch            |
|                               |  |             www.md-systems.ch |
+-------------------------------+  +-------------------------------+



With Cheers,
Hardik Dalwadi.

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  OpenSSH 4.2 and OpenBSD 3.5, Martín
Next by Date:  Re: help? ssh connect w/ DSA pubkey auth keeps asking for passphrase; w/ RSA pubkey auth, all is OK, Alexey G. Khramkov
Previous by Thread:  Logging Traffic by user @ OpenSSH 3.8.1, Miro Dietiker, MD Systems
Next by Thread:  file transfer size limit, Ben Kim
Indexes:  [Date] [Thread] [Top] [All Lists]