I'm working in a firm specialized in providing banking
services. I'm working on a user control mechanism and as part of the mechanism
I need an auditing solution. Here are the requirements I have for my system:
Logging all the command that users enter and
preferably storing them on a per user basis (for instance the command log for
the user "navid" be stored as "navid.log"
The ability to search for incidents based on user,
command or time.
Ability to generate reports on a weekly basis.
I've looked into syslog, syslog-ng, ossec and open-audit
but I'm really not sure which one to go with.