[wellylug] Logging
Rik Wade
rik at rikwade.com
Wed Sep 21 19:39:57 NZST 2005
On 21/09/2005, at 6:45 PM, Andrew Childs wrote:
>
> $ /sbin/iptables -m owner -h
>
> ...
>
> OWNER match v1.2.11 options:
> [!] --uid-owner userid Match local uid
> [!] --gid-owner groupid Match local gid
> [!] --pid-owner processid Match local pid
> [!] --sid-owner sessionid Match local sid
> [!] --cmd-owner name Match local command name
Matching on local UID would be the best idea I would have thought.
Easy to create a match and log rule in iptables. You could either use
one of the iptables log parsing packages (look on freshmeat.net), or
just log each user's bytes to a file which is taken as input to a
cron job (every 5 minutes?) to stick the number in an rrd (rrdtool
database) which can then easily be processed and graphed if required
using the same package.
Definitely easier than setting up a virtual linux image for each user.
--
rik
More information about the wellylug
mailing list