03-06-2006
Security Audit Trail
Dear Experts,
I would like to know whether there are any tools available to view the Security Audit Trail files (SAT) in UNIX in a easier and customized way. If there is any similar type of S/W is available, please let me know.
Thanks,
Aswin
8 More Discussions You Might Find Interesting
1. Cybersecurity
I am new to the world of Unix. As part of my understanding to have a big picture of Unix, I need to understand:
1. How to review the existing unix system or audit for the settings?
2. How do I go about fixing the holes? (4 Replies)
Discussion started by: amundra
4 Replies
2. Shell Programming and Scripting
Hi,
I'm automatically FTPing few files daily as a cron job to a remote server.
I wanted to know if there is a way to log the successful transfer in a log on the remote server?
The log on the remote server should look something like this.
10/30/2006 00:00:02 - File 1 transferred... (0 Replies)
Discussion started by: dayanand
0 Replies
3. UNIX for Dummies Questions & Answers
I am trying to set up audit trail for our company server. (Mac OS X Server 10.3.9) We would like to record the activity of standard, non-administrative, users. We would like to record file creation, modification, deletion, among other things. We have installed the common criteria tools, but the... (3 Replies)
Discussion started by: iarnum
3 Replies
4. UNIX for Advanced & Expert Users
hi need you advise...
in my company, we have to use mgmt server in order to access to other servers. so basically we need to login to our mgmt server (solaris) before we ssh to any other servers.
my boss ask me to do some reporting on who access some "specific servers" by weekly. any idea how... (4 Replies)
Discussion started by: ashterix
4 Replies
5. UNIX for Dummies Questions & Answers
Hey,
I was wondering if anyone knew of any good tools out there for collecting/viewing/sorting audit data from Solaris (10) and Linux (SUSE and RHE) platforms? I am required by some government standards to audit certain actions on these systems like login and logouts, file access and actions... (0 Replies)
Discussion started by: fearturtle03
0 Replies
6. Solaris
What files are in this directory? Are they files that tell you what events have been performed on the system for the day? Also, I am searching in one of these files for a Permission Denied entry. How do I go about searching for this entry in these files if they are so huge and cannot display on my... (2 Replies)
Discussion started by: jastanle84
2 Replies
7. AIX
Dear All
When I start the AIX(6100-06)audit subsystem.
the log will save in /audit/stream.out (or /audit/trail), but in default when /audit/stream.out to grow up to 150MB.
It will replace the original /audit/stream.out (or /audit/trail).
Then the /audit/stream.out become empty and... (2 Replies)
Discussion started by: nnnnnnine
2 Replies
8. UNIX for Dummies Questions & Answers
Hi everyone,
I have a situation where I need my personal account (say bob1) to login into a Red Hat 6 server, su to a system/application account (say app1) and kick off a script to do x,y and z. This isn't an issue.
Now once I su- to the app1 account and kick-off the script this script then... (3 Replies)
Discussion started by: solomani
3 Replies
LEARN ABOUT LINUX
snmpa_network_interface
snmpa_network_interface(3erl) Erlang Module Definition snmpa_network_interface(3erl)
NAME
snmpa_network_interface - Behaviour module for the SNMP agent network interface.
DESCRIPTION
This module defines the behaviour of the agent network interface. A snmpa_network_interface compliant module must export the following
functions:
* start_link/4
* info/1
* get_log_type/1
* set_log_type/2
* verbosity/2
The semantics of them and their exact signatures are explained below.
But this is not enough. There is also a set of mandatory messages which the network interface entity must be able to receive and be able to
send. This is described in chapter snmp_agent_netif .
EXPORTS
start_link(Prio, NoteStore, MasterAgent, Opts) -> {ok, Pid} | {error, Reason}
Types Prio = priority()
NoteStore = pid()
MasterAgent = pid()
Opts = [opt()]
opt() = {verbosity, verbosity()} | {versions, versions()} | term()
versions() = [version()]
version() = v1 | v2 | v3
Start-link the network interface process.
NoteStore is the pid of the note-store process and MasterAgent is the pid of the master-agent process.
Opts is an (basically) implementation dependent list of options to the network interface process. There are however a number of
options which must be handled: versions and verbosity .
info(Pid) -> [{Key, Value}]
Types Pid = pid()
The info returned is basically up to the implementer to decide. This implementation provided by the application provides info about
memory allocation and various socket information.
The info returned by this function is returned together with other info collected by the agent when the info function is called
(tagged with with the key net_if ).
verbosity(Pid, Verbosity) -> void()
Types Pid = pid()
Verbosity = verbosity()
Change the verbosity of a running network interface process.
get_log_type(Pid) -> {ok, LogType} | {error, Reason}
Types Pid = pid()
LogType = atl_type()
Reason = term()
The Audit Trail Log is managed by the network interface process. So, it is this process that has to retrieve the actual log-type.
set_log_type(Pid, NewType) -> {ok, OldType} | {error, Reason}
Types Pid = pid()
NewType = OldType = atl_type()
Reason = term()
The Audit Trail Log is managed by the network interface process. So, it is this process that has to do the actual changing of the
type.
See set_log_type for more info.
Ericsson AB snmp 4.19 snmpa_network_interface(3erl)