audgenl(3x)audgenl(3x)Name
audgenl - generate an audit record
Syntax
#include<sys/audit.h>
int audgenl (event [ ,token_type, token_val] ... , 0 )
unsigned event;
Arguments
event
An integer that indicates the event type of the operation being audited.
token_type,token_val
A type and value pair defining the data to be placed in the audit record.
Description
This routine is an interface to the system call. It accepts a variable number of arguments describing the event and audit data, then calls
with the appropriate parameters to generate the audit record. This routine is found in the library and is loaded with the -laud option.
The argument event is an integer indicating the event type of the operation being audited, as defined in The value of event must be between
MIN_TRUSTED_EVENT and MIN_TRUSTED_EVENT + N_TRUSTED_EVENTS-1, as defined in The argument pairs containing token_type and token_val describe
the data that is to be placed into the audit record. The argument token_type describes the type of data, as defined in
The argument token_val should be set to the value of the token when the token is represented by an int or short data type, or be a pointer
to the data described by the token when the token references a character string.
Restrictions
The system call is privileged.
The maximum number of token_type, token_val pairs allowed is 8.
Return Values
On successful completion, a value of 0 is returned. Otherwise, a value of -1 is returned and the global integer variable errno is set to
indicate the error.
Diagnostics
[EACCES] The user is not privileged for this operation.
[EINVAL] The value supplied for an argument is invalid.
See Alsoaudgenl(3x)
Check Out this Related Man Page
sia_audit(3) Library Functions Manual sia_audit(3)NAME
sia_audit - Variable format interface for audgen - SIA (Security Integration Architecture)
LIBRARY
Standard C library (libc.so and libc.a)
SYNOPSIS
#include <siad.h>
int sia_audit(
u_int event,...);
PARAMETERS
event The event argument indicates the event value of the operation being audited, as defined in audit.h. The value of event must be
between MIN_TRUSTED_EVENT and MIN_TRUSTED_EVENT + N_TRUSTED_EVENTS -1 or between MIN_SITE_EVENT and MIN_SITE_EVENT +
n_site_events -1 as defined in audit.h. The definition of n_site_events is determined by executing the sysconfig -q sec
audit_site_events command on the running kernel.
DESCRIPTION
The sia_audit() routine is an interface for the audgen system call. It accepts a variable number of arguments describing the event and
audit data, then calls with the appropriate parameters to generate the audit record.
RESTRICTIONS
The audgen system call is privileged.
RETURN VALUES
The sia_audit() routine returns SIASUCCESS or SIAFAIL.
ERRORS
The errno value is that set by the audgen system call. Possible errors include resource constraints (no memory) and various authentication
failures.
RELATED INFORMATION audgen(2), audgenl(3), sysconfig(8), sysconfigdb(8)
Security delim off
sia_audit(3)
<h1>A short history of UNIX</h1>
<p>In the late 1960's Ken Thompsom joined the computing-science research group at Bell
Laboratories, which is the research arm of the giant American corporation ATT. He and many
colleagues had been collaborating with MIT and GE on the development of an... (0 Replies)
We have quite a few threads about this subject. I have collected some of them and arranged them by the OS which is primarily discussed in the thread. That is because the exact procedure depends on the OS involved. What's more, since you often need to interact with the boot process, the... (0 Replies)
I'm writing a command shell, and I want to be able to detect when the user presses an arrow key (otherwise it just prints [[A, [[B, etc.). I know it's relatively easy (although somewhat more time-consuming) to detect keystrokes in noncanonical mode, but I've noticed that the bash shell detects... (4 Replies)
I'm learning off Linux (Ubuntu) right now. I want to move up to Unix, but I don't want to rush like I did when it came to Windows --> to Linux. What is the best Unix OS that fits in pretty well with Ubuntu.
In other words is there kind of an equal Linux with Unix?
Also what do I need to... (10 Replies)
I noticed my hostname is <my-full-name>s-macbook.local. I'm not sure exactly what information leaves the local network, and whether the hostname is included, but if it is, this would mean people on the Internet can look at my hostname and see who I am. Before anyone says that's not possible,... (4 Replies)