If your system has\u00a0bash<\/strong>, the most commonly used shell out there then all commands executed by normal system users will be stored in the\u00a0 To view a user\u00a0aaronkilik\u2019s<\/strong>\u00a0 User bash-history file<\/p>\n From the screen shot above, the\u00a0date<\/strong>\u00a0and\u00a0time<\/strong>\u00a0when a command was executed is not shown. This is the default setting on most if not all Linux distributions.<\/p>\n You can follow this guide to\u00a0set date and time for each command in bash_history file<\/a>.<\/p>\n To get a glimpse of what users are doing on the system, you can use the\u00a0 Monitor Logged in Users<\/p>\n<\/div>\n But to have a real-time view of the shell commands being run by another user logged in via a terminal or SSH, you can use the\u00a0Sysdig tool in Linux<\/a>.<\/p>\n Sydig<\/strong>\u00a0is an open-source, cross-platform, powerful and flexible system monitoring, analysis and troubleshooting tool for Linux. It can be used for system exploration and debugging.<\/p>\n Once you have installed\u00a0sysdig<\/strong>, use the\u00a0 The above command displays every command that users launch interactively as well as every directory users visit.<\/p>\n Monitor User Activity in Real-Time<\/p>\n<\/div>\n That\u2019s all, you can also check out these following related articles:<\/p>\n In this system security guide, we described how to view users bash history file, show logged on users and what they are doing, and we also explained how to view or monitor all commands executed by system users in real-time.<\/p>\n If you want to share any other methods or ask questions, please do so via the comment section below.<\/p>\n.bash_history<\/code>\u00a0hidden file which is kept in each user\u2019s home directory. The content of this file can be viewed by users, using the\u00a0history command<\/a>.<\/p>\n.bash_history<\/code>\u00a0file, type:<\/p>\n# cat \/home\/aaronkilik\/.bash_history\r\n<\/pre>\n
![\"User](\"https:\/\/www.tecmint.com\/wp-content\/uploads\/2017\/09\/User-bash-history-file.png\")
<\/p>\nMonitor User Activity in Real-time Using Sysdig in Linux<\/h3>\n
w<\/code>\u00a0command as follows.<\/p>\n# w\r\n<\/pre>\n
![\"Monitor](\"https:\/\/www.tecmint.com\/wp-content\/uploads\/2017\/09\/Monitor-Logged-in-Users.png\")
<\/p>\nspy_users<\/code>\u00a0chisel to spy on users by running the command below.<\/p>\n# sysdig -c spy_users\r\n<\/pre>\n
![\"Monitor](\"https:\/\/www.tecmint.com\/wp-content\/uploads\/2017\/09\/Monitor-User-Activity-in-Real-Time.png\")
<\/p>\n\n