On Mon, Sep 6, 2010 at 9:57 PM, Timo Juhani Lindfors <timo.lindf...@iki.fi> wrote: > Matt Brown <ma...@debian.org> writes: >> This pluggable authentication module (PAM) provides authentication via secure >> shell (SSH) agent. Written with sudo in mind, but like any auth PAM module, >> can be used for many purposes. > > Is there any way to see what sudo command is being authenticated?
sudo logs the command being run as part of it's standard logging, e.g: Sep 6 21:18:45 neon sudo[1589]: pam_ssh_agent_auth: Authenticated: `matt' as `matt' using /etc/security/authorized_keys Sep 6 21:18:45 neon sudo: matt : TTY=pts/1 ; PWD=/home/matt ; USER=root ; COMMAND=/bin/bash -- Matt Brown m...@mattb.net.nz Mob +353 86 608 7117 www.mattb.net.nz -- To UNSUBSCRIBE, email to debian-wnpp-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/aanlktinszx2ulbhatmd8yz9fzyinzkp0drjghhg...@mail.gmail.com
