Tool for Monitoring (Tracking) any change of setting have been made on Server
-
That's a tough one. You can use the operating system's auditing tools. You can use a change management system like Chef + GIT. Depends on how you want to handle it.
-
@scottalanmiller share link .. pls
-
-
Depends on what kind of server. Linux has some cool options. One is called process accounting. http://www.tecmint.com/how-to-monitor-user-activity-with-psacct-or-acct-tools/
-
Process accounting would make it very hard to track back the actual changes to settings, though. It would tell you when something was restarted but not how the configuration file had been altered.
-
The standard process for this is stuff like Chef, Puppet, cfEngine, Ansible, etc. that actually keep your systems defined in code and keep them versioned so you can literally track all changes and roll back to old versions if necessary.
-
@scottalanmiller said:
Process accounting would make it very hard to track back the actual changes to settings, though. It would tell you when something was restarted but not how the configuration file had been altered.
Good point, it doesn't show edits made on files just commands that are run.
-
Right, it tracks "change activity" but not the actual changes. You'd know who changed it and when, but not what was actually modified.
-
@scottalanmiller said:
Right, it tracks "change activity" but not the actual changes. You'd know who changed it and when, but not what was actually modified.
You could just make your root folder a git repo
-
You can and some people do but it is surprisingly painful to work that way
-
You could track changes, sort of, via a backup or snapshot system. But that would be very cumbersome and complex and I doubt that it would prove to be very useful at any scale. Maybe if you just had one or two machines.
-
That would indeed be extremely cumbersome and would require a lot of storage, potentially.
-
thanks everyone for feedback ..will try some ..
