def test_record_as_admin_user(self):
"""
Check tlog-rec preserves sudo activity of admin user in
recordings
"""
logfile = mklogfile(self.tempdir)
cfg = '''
%wheel ALL=(ALL) NOPASSWD: ALL
'''
mkcfgfile('/etc/sudoers.d/01_wheel_nopass', cfg)
shell = ssh_pexpect(self.admin1, 'Secret123', 'localhost')
shell.sendline('tlog-rec -o {}'.format(logfile))
shell.sendline('whoami')
shell.expect(self.admin1)
shell.sendline('sleep 2')
shell.sendline('echo test1223')
shell.expect('test1223')
shell.sendline('sudo ls -ltr /var/log/audit')
shell.expect('audit.log')
shell.sendline('exit')
check_outfile('test1223', logfile)
check_recording(shell, 'test1223', logfile)
shell.close()
shell = ssh_pexpect(self.admin1, 'Secret123', 'localhost')
check_recording(shell, 'audit.log', logfile)
shell.close()
def test_record_as_admin_user(self):
"""
Check tlog-rec preserves sudo activity of admin user in
recordings
"""
logfile = mklogfile(self.tempdir)
cfg = '''
%wheel ALL=(ALL) NOPASSWD: ALL
'''
mkcfgfile('/etc/sudoers.d/01_wheel_nopass', cfg)
shell = ssh_pexpect(self.admin1, 'Secret123', 'localhost')
shell.sendline('tlog-rec -o {}'.format(logfile))
shell.sendline('whoami')
shell.expect(self.admin1)
shell.sendline('sleep 2')
shell.sendline('echo test1223')
shell.expect('test1223')
shell.sendline('sudo ls -ltr /var/log/audit')
shell.expect('audit.log')
shell.sendline('exit')
check_outfile('test1223', logfile)
check_recording(shell, 'test1223', logfile)
shell.close()
shell = ssh_pexpect(self.admin1, 'Secret123', 'localhost')
check_recording(shell, 'audit.log', logfile)
shell.close()
def generate_config(self, filename):
""" Generate a configuration and write it to filename """
# append TlogRecConfig configuration to our base configuration
tlog_rec_session_config = self._setup_base_session_config()
tlog_rec_config = super()._setup_config()
tlog_rec_session_config.update(tlog_rec_config)
mkcfgfile(filename, json.dumps(tlog_rec_session_config, indent=4))
def generate_config(self, filename):
""" Generate a configuration and write it to filename """
tlog_play_config = self._setup_config()
mkcfgfile(filename, json.dumps(tlog_play_config, indent=4))