@IRJ said in How to screen record the session:

@black3dynamite said in How to screen record the session:

@IRJ said in How to screen record the session:

@black3dynamite said in How to screen record the session:

Using the script command can make typescript of terminal session.

https://www.tecmint.com/record-and-replay-linux-terminal-session-commands-using-script/

https://noise.getoto.net/2016/06/14/how-to-record-ssh-sessions-established-through-a-bastion-host/

https://unix.stackexchange.com/questions/25639/how-to-automatically-record-all-your-terminal-sessions-with-script-utility#25725

User can easily delete though

What about using something like chattr or SELinux to prevent deletion?
https://serverfault.com/questions/448891/how-to-prevent-file-owner-from-changing-deleting-their-own-file-linux-centos

Do you think using auditd would be better?

https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/security_guide/sec-configuring_pam_for_auditing

Looks a lot less complicating to use.