Keystroke Action Events
Privilege Management for Unix and Linux also records various keystroke action events in the event log. The administrator can specify that various words or patterns, when typed into a secured task, be logged to the event log and optionally terminate the job.
The easiest way to see the logged or rejected keystrokes in a session is to execute:
To enable keystroke action events, please see the setkeystrokeaction procedure in the Privilege Management for Unix and Linux Policy Language Guide.