The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Top Forums > UNIX for Advanced & Expert Users
Tracing file modifications Tracing file modifications
Google UNIX.COM
Forums Portal Register Forum Rules FAQContribute Members List Arcade Search Today's Posts Mark Forums Read


UNIX for Advanced & Expert Users Advanced UNIX and Linux questions go here. Expert-to-Expert.

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
how to write modifications in to two tables naveeng.81 Shell Programming and Scripting 0 04-09-2008 10:26 AM
question about testing in shell programming(modifications were made) thungmail Shell Programming and Scripting 2 04-08-2008 12:51 PM
my shell script (file modifications) whizkidash Shell Programming and Scripting 2 03-24-2008 12:50 PM
list files with modifications <15 minutes tom_k_mishra UNIX for Dummies Questions & Answers 2 11-10-2005 11:10 PM
In Line File Modifications: Search and Replace Shakey21 Shell Programming and Scripting 2 11-20-2001 01:21 PM

Reply
 
Submit Tools LinkBack Thread Tools Search this Thread Display Modes
  #1  
Old 08-02-2005
Registered User
  

Join Date: Aug 2005
Posts: 2
Tracing file modifications
Hello all!

Is there a way or a utility to trace any kind of file changes in a particular directory on any UNIX machine?
The purpose is that in Unix, there are multiple ways of opening and making changes to a file. But internally, there must be something common (a single pipe, etc.) that is being refered by every application or command that performs file modifications. How can I get to that?
Reply With Quote
Forum Sponsor
  #2  
Old 08-03-2005
Perderabo's Avatar
Unix Daemon
  

Join Date: Aug 2001
Location: Washington DC Area
Posts: 8,654
Some versions of unix have c2 security features which can trace any system call made by any process. I don't know of any other way to to do what you want. The kernel knows whenever a file is changed, but there are no interfaces to provide the info except for c2 auditing. Beyond that you would need to rewrite the kernel.
Reply With Quote
  #3  
Old 08-03-2005
blowtorch's Avatar
Supporter
  
Tetris Champion!
Join Date: Dec 2004
Location: Singapore
Posts: 2,326
There is a product called ETrust that is available from Computer Associates, maybe you could look that up.
Reply With Quote
  #4  
Old 08-03-2005
Registered User
  

Join Date: Jul 2005
Location: England
Posts: 183
Tripwire is a possibility for tracking file system intergrity. Worth looking at anyway.
Reply With Quote
Google The UNIX and Linux Forums
Reply

« Adapter Errors and Link Errors | implicit ssl vs explicit ssl »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode




All times are GMT -7. The time now is 06:30 AM.

The UNIX and Linux Forums RSS Feeds - Contact Us - The UNIX and Linux Forums - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited.
The UNIX and Linux Forums Content Copyright ©1993-2008. All Rights Reserved.Ad Management by RedTyger Visit The Complex Event Processing Blog

Content Relevant URLs by vBSEO 3.2.0