Reflecting a flourishing need for automation collection in a enterprise, Quest Software has expelled a program package that could assistance Unix administrators improved conduct process files that establish that users can entrance absolved element and programs on Unix and Linux systems.
The package extends a capabilities of a Unix Sudo tool. “A lot of a business have been regulating Sudo for many years. This provides them with correspondence and stating capabilities,” pronounced Jackson Shaw, Quest comparison executive of product management.
The newly expelled Quest One Privilege Manager for Sudo can yield a reduce cost choice to other craving entrance government program packages for Unix, Shaw argued, since it leverages a giveaway Sudo application and doesn’t need administrators to learn a whole set of new commands.
Sudo proves a approach for users to run specific supportive complement commands and programs though wanting a full base entrance to a machine. Administrators can extent what modernized entrance rights any user can suffer when evoking a Sudo command.
About 18 months ago, Quest hired a Sudo plan maintainer, Todd Miller, to say a open-source program on a full-time basement — he had been operative on Sudo during his giveaway time before then.
While widely used, Sudo has stipulations in a complicated craving environment, Shaw argued. An director might have to conduct a Sudo polices opposite dozens or hundreds of servers, and creation changes can engage manually duplicating process files opposite mixed machines.
Also, Sudo offers small assistance with stating on how an classification meets a correspondence regulations and policies. “A lot correspondence regulations wish not only who had entrance to something, though what they indeed did,” Shaw said. For instance, Sudo can keep a record of how it was used, though not what keystrokes were used within Sudo mode.
Privilege Manager addresses these concerns. Quest’s program was built on a plug-in design introduced in Sudo 1.8, expelled in March. The package contains a executive process server, from that administrators can revise a process files, that are afterwards distributed to all a servers.
The package also includes a keylogger plug-in, that can constraint all a actions within a Sudo session. With this plug-in, an director could find out what a user did during a sold session, or who released a specific authority during a sold time. The package can also furnish reports of who has absolved access, and what programs they can run. The program can be run from a authority line, so it can be incorporated into director scripts.
Quest One Privilege Manager for Sudo, accessible Thursday, costs US$59 per server.
Joab Jackson covers craving program and ubiquitous record violation news for The IDG News Service. Follow Joab on Twitter during @Joab_Jackson. Joab’s e-mail residence is Joab_Jackson@idg.com