audit_startup(1M) System Administration Commands audit_startup(1M)NAME
audit_startup - audit subsystem initialization script
SYNOPSIS
/etc/security/audit_startup
DESCRIPTION
The audit_startup script is used to initialize the audit subsystem before the audit deamon is started. This script is configurable by
the system administrator, and currently consists of a series of auditconfig(1M) commands to set the system default policy, and download the
initial event to class mapping.
SEE ALSO auditconfig(1M), auditd(1M), bsmconv(1M), attributes(5)NOTES
The functionality described in this man page is available only if the Basic Security Module (BSM) has been enabled. See bsmconv(1M) for
more information.
SunOS 5.10 6 May 1993 audit_startup(1M)
Check Out this Related Man Page
bsmconv(1M) System Administration Commands bsmconv(1M)NAME
bsmconv, bsmunconv - enable or disable the Basic Security Module (BSM) on Solaris
SYNOPSIS
/etc/security/bsmconv [rootdir...]
/etc/security/bsmunconv [rootdir...]
DESCRIPTION
The bsmconv and bsmunconv scripts are used to enable or disable the BSM features on a Solaris system. The optional argument rootdir is a
list of one or more root directories of diskless clients that have already been configured. See smdiskless(1M).
To enable or disable BSM on a diskless client, a server, or a stand-alone system, logon as super-user to the system being converted and use
the bsmconv or bsmunconv commands without any options.
To enable or disable BSM on a diskless client from that client's server, logon to the server as super-user and use bsmconv, specifying the
root directory of each diskless client you wish to affect. For example, the command:
myhost# bsmconv /export/root/client1 /export/root/client2
enables BSM on the two machines named client1 and client2. While the command:
myhost# bsmconv
enables BSM only on the machine called myhost. It is no longer necessary to enable BSM on both the server and its diskless clients.
After running bsmconv the system can be configured by editing the files in /etc/security. Each diskless client has its own copy of configu-
ration files in its root directory. You might want to edit these files before rebooting each client.
Following the completion of either script, the affected system(s) should be rebooted to allow the auditing subsystem to come up properly
initialized.
FILES
The following files are created by bsmconv:
/etc/security/device_maps Administrative file defining the mapping of device special files to allocatable device names.
/etc/security/device_allocate Administrative file defining parameters for device allocation.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWcsr |
+-----------------------------+-----------------------------+
SEE ALSO auditconfig(1M), auditd(1M), audit_startup(1M), audit.log(4), audit_control(4), attributes(5)NOTES
bsmconv and bsmunconv are not valid in a non-global zone.
SunOS 5.10 26 May 2004 bsmconv(1M)
Has anyone had the opportunity to set up a profile utilizing the "script" command to capture input?
I am utilizing solaris 8 on sun servers.
I modified the /etc/profile to start "script" when the user logs in and stops upon log out. It will also follow the user when it traverses across... (7 Replies)
Hi all..
I need to perform an audit on my servers (ranging form mdk to redhat, knoppix...). I know there exists somewhere a script that could get me back the info i want..
I've googled around, and haven't found anything interesting.. Anyone have some thing i could investigate?
Thanx
... (5 Replies)
i want to audit user commands ..
keep track of what commands each user has been giving ..
can this be done by writing a script in engraving it in .profile of the user.
or is there any other way of doing this ...
rgds
raj (2 Replies)
Hello Unix Champs,
For keeping audit trail, I want to log the commands entered by the normal users, on their terminal into a text file.
I tried putting a "script -a username.timestamp.txt" in the user profile file, but script command stops execution when user types exit or presses CTRL+D... (3 Replies)
Hello, i have an interresting topic today
C++ on solaris. lgpl stuff applicable.
My program is a deamon process wich takes input from network, then processes the data, and outputs reformatted to network. We're generating a lot of logging output. the logging is absolutely unbuffered at the... (3 Replies)
Hi,
We have >1000 UNIX boxes in our environment with various UNIX flavors like Solaris, HP-UX and Redhat Linux ES 3/4/5. We need to collect their system configuration like
- No. of CPUs and their frequencies
- RAM Size
- No. of HDDs installed and their usage
- Exact OS Version and its... (3 Replies)
Hi,
When I run the following script
#!/bin/sh
email="rc@dll.com"
subject="response times are more than a SECOND"
rt=`tail audit.log | grep -i operationResponseTime | awk '{print $2}'`
if
then
### Mail the file to the mailbox
mail -s $subject $email <<-end
$rt
~.... (3 Replies)
Hello,
My old AIX version is having the following in the script -- so whenever the system reboots -- the following is set:
vmtune -f 480 -F 512 -R 32 -P 30 -p 10
Now, we have a new P-series system which has AIX 5.3 ; As i understand that vmtune is no longer supported on AIX 5.2 and above ;... (13 Replies)
How to validate the first line from 1-8 position of audit file that contains the script run date... script could run in random dates.
head -1 file1
20090516 100034837SHDHSHE (9 Replies)
I have an alias already in my .bash_profile to download files using cUrl's -o (output to file, user provides the file name) option. I find I'm using it quite a bit, so I wanted to write a script to run "curl -o", taking the necessary inputs - file name and URL from which to download - and then... (3 Replies)
Hi All,
First time poster so be gentle - Also apologies if this is in the wrong section.
I am not a unix administrator but as a Storage administrator know enouh to get me by for what I need to do.
However I am having a slow night-shift so I am playing about with a bit of scripting to... (7 Replies)
we have several deamon processes which were killed for some unknown reasons. we have to bring the deamon back manually everytime. Deamons running on 2 identical instances. It is ok on one instance but be killed 3 or 4 times a day on another. Any idea how to monitor it? like who/how the processes be... (3 Replies)
Alright, well I did some more research since I originally posted this thread, and as much as I'd like to delete it, I can't, so I'll just extend my initial question a little.
Right now I have 3 scripts:
1#!/bin/bash
# script1 - Write all files modfied x days ago
find .. -daystart -mtime 0... (2 Replies)
After spending sometime playing around with my script I just cannot get it to do what I want. So I decided to ask. My file looks something like this:
I am using the following code to extract sequences that contain dashes
awk '/^>/{id=$0;next}{if (match($1,"-")) print id "\n" $0}' infile
... (17 Replies)
Hi all,
I have a script from a programmer, for which I need to analyze a problem.
The script gathers audit info and prints out the results. Two different departments use it, on two different printers. In the script department the there are no issues. In the other department the same script... (10 Replies)