Atlas
September 13th, 2005, 10:52
I've got an OpenBSD 3.6 box running sshd for use as a poor-man's VPN. I have several users who connect to the box to use it as a TCP Gateway for when they are on limited or insecure networks (SOCKSified browsing, local port-fordwarding for AIM, etc). I would like to keep track of which ones of these users are using the box, how often, from where, etc. Since none of them are allowed to open an interactive session (/bin/nologin is their shell) the LAST command doesn't give me an accurate representation. Does anyone have any suggestions as to how to monitor this?

Kernel_Killer
September 13th, 2005, 11:44
Have you checked you /var/log/authlog?

Atlas
September 13th, 2005, 13:15
:icon_redf

I knew there was something I was forgetting....

Thanks!