def test_record_as_admin_user(self): """ Check tlog-rec preserves sudo activity of admin user in recordings """ logfile = mklogfile(self.tempdir) cfg = ''' %wheel ALL=(ALL) NOPASSWD: ALL ''' mkcfgfile('/etc/sudoers.d/01_wheel_nopass', cfg) shell = ssh_pexpect(self.admin1, 'Secret123', 'localhost') shell.sendline('tlog-rec -o {}'.format(logfile)) shell.sendline('whoami') shell.expect(self.admin1) shell.sendline('sleep 2') shell.sendline('echo test1223') shell.expect('test1223') shell.sendline('sudo ls -ltr /var/log/audit') shell.expect('audit.log') shell.sendline('exit') check_outfile('test1223', logfile) check_recording(shell, 'test1223', logfile) shell.close() shell = ssh_pexpect(self.admin1, 'Secret123', 'localhost') check_recording(shell, 'audit.log', logfile) shell.close()
def generate_config(self, filename): """ Generate a configuration and write it to filename """ # append TlogRecConfig configuration to our base configuration tlog_rec_session_config = self._setup_base_session_config() tlog_rec_config = super()._setup_config() tlog_rec_session_config.update(tlog_rec_config) mkcfgfile(filename, json.dumps(tlog_rec_session_config, indent=4))
def generate_config(self, filename): """ Generate a configuration and write it to filename """ tlog_play_config = self._setup_config() mkcfgfile(filename, json.dumps(tlog_play_config, indent=4))