Skip to content
anazmy edited this page Nov 25, 2016 · 13 revisions

  1. What Is Aker?
  2. What Problem Does Aker Solve?
## What Is Aker? Today's security challenges requires a different approach to monitor whats going in your environment, whether your business require HIPPA or PCI-DSS Compliance or not, you still need to be aware of whats going in within your environment, Aker acts as a SSH gateway (a choke point) that records all users sessions. ## What Problem Does Aker Solve? There are many published open-source approaches to record SSH sessions, but the problem is they all tried to adapt to the traditional SSH access pattern

This pattern lead to "SSH recording" solutions that tries to log user activity on the endpoints (Linux servers), and push the logs to a centralized logging server, but IMHO there is a problem in this approach, in most cases a subset of the users have root access on the Linux servers, hence they may have the ability to :

  • Manipulate the logging .
  • Route logged traffic to different server .
  • Stop logging all together .

Aker tries to address the SSH recording needs and challenges in a different way. By adding SSH gateways to guard your environment as a central location to capture, maintain and audit your SSH sessions .

You get the idea, right ?

Users on Aker SSH gateway have no super root powers nor they have a shell, instead they get an intuitive text based window, listing the servers they are allowed to access .

images/gateway.png

Clone this wiki locally