03-20-2006
Update
[QUOTE=ghanshyampatel]Hi All,
Any one has, sun solaris audit program which covers everything one need to check as a security auditor.
Audit Program will help.
Thanks,
Ghanshyam
10 More Discussions You Might Find Interesting
1. Solaris
I got a lot of this message in my /var/audit log
how can I exclude this message?
header,127,2,invalid event number,fe,hostsol1.com.sg,2007-12-21 00:10:01.001 +08:00,argument,1,0x5,processor ID,argument
,2,0x3,flag,text,P_STATUS,subject,zhang1,root,root,root,root,18228,576129155,291 131094... (1 Reply)
Discussion started by: geoffry
1 Replies
2. Solaris
How do I know that audit is enabled in soalris. in AIX 'audit query' command gives me the info whether auditing is on or not.
Raghav (1 Reply)
Discussion started by: raghavender_sri
1 Replies
3. Solaris
can you please share what you use to audit what files are deleted, when files are deleted and who deleted them?
thx (1 Reply)
Discussion started by: melanie_pfefer
1 Replies
4. Programming
Can anyone tell me how to compile a c programs on SunSolaris OS 5.1 Version as gcc and cc are not working
Thanks!!!! (4 Replies)
Discussion started by: shivu
4 Replies
5. Solaris
Hi Friends
I am a Solaries newbie and I am looking out for a software or command or config that can capture all commands run by all users on a server on a daily basis. I believe that this Audit is being done in almost all enterprises and would like to know how the same is done there.
Any... (3 Replies)
Discussion started by: Hari_Ganesh
3 Replies
6. Solaris
Hello
We have recently been through an audit of our solaris servers.
All our solaris servers are running version 10.
We have been told to close down all the services and we have closed what we could by using svcadm disable
We only wish to let ssh and the ftp service to run.
Below is a... (3 Replies)
Discussion started by: sollyshah
3 Replies
7. UNIX for Dummies Questions & Answers
Hello!
I am trying to run a program which has used Xlib for its graphical user interface on Solaris through Common Desktop Environment(CDE). All I get is my three required widows open but all blank.They suppose to show some symbols, pictures ad buttons.In the command terminal the following... (1 Reply)
Discussion started by: asif92
1 Replies
8. Solaris
Dear All,
I have one of my Servers, running Solaris 9. I wanna enable the Audit log enabling, the way I did in Solaris 10 Servers.
After running, the bsmconv script, giving the reboots, modifying all the audit files in /etc/security, the audit is enabled, but the audit file which shall be... (3 Replies)
Discussion started by: sumeet1806
3 Replies
9. Solaris
Linux audits in syslog, any time a user is deleted or added. However, I'm running a Solaris11 VM, and find no such entries. How can I enable auditing for useradd and userdel? Oracle's documentation on managing the auditing service, has been of no assistance. Thanks.
Customizing What Is... (7 Replies)
Discussion started by: Nvizn
7 Replies
10. Solaris
hi,
I enabled bsm modules (/etc/security/bsmconv) and rebooted Solaris 10. But service is going into maintenance state. I rebooted server and I see one error saying "sys/c2audit:audit_kssl() not defined properly". I am not sure, what it is indicating and how it should be fixed. Please suggest, how... (5 Replies)
Discussion started by: solaris_1977
5 Replies
LEARN ABOUT DEBIAN
globus-gram-audit
GLOBUS-GRAM-AUDIT(8) GRAM5 Commands GLOBUS-GRAM-AUDIT(8)
NAME
globus-gram-audit - Load GRAM4 and GRAM5 audit records into a database
SYNOPSIS
globus-gram-audit [--conf CONFIG_FILE] [[--create] | [--update=OLD-VERSION]] [--check] [--delete] [--audit-directory AUDITDIR] [--quiet]
DESCRIPTION
The globus-gram-audit program loads audit records to an SQL-based database. It reads $GLOBUS_LOCATION/etc/globus-job-manager.conf by
default to determine the audit directory and then uploads all files in that directory that contain valid audit records to the database
configured by the globus_gram_job_manager_auditing_setup_scripts package. If the upload completes successfully, the audit files will be
removed.
The full set of command-line options to globus-gram-audit consist of:
--conf CONFIG_FILE
Use CONFIG_FILE instead of the default from the
configuration file for audit database
configuration.
--check
Check whether the insertion of a record was
successful by querying the database after
inserting the records. This is used in tests.
--delete Delete audit records from the database right
after inserting them. This is used in tests to
avoid filling the databse with test records.
--audit-directory DIR Look for audit records in DIR, instead of looking
in the directory specified in the job manager
configuration. This is used in tests to control
which records are loaded to the database and then
deleted.
--query SQL Perform the given SQL query on the audit
database. This uses the database information from
the configuration file to determine how to
contact the database.
--quiet Reduce the amount of output for common
operations.
FILES
The globus-gram-audit uses the following files (paths relative to $GLOBUS_LOCATION.
etc/globus-gram-job-manager.conf
GRAM5 job manager configuration. It includes the
default path to the audit directory
etc/globus-gram-audit.conf
Audit configuration. It includes the information
needed to contact the audit database.
University of Chicago 08/30/2011 GLOBUS-GRAM-AUDIT(8)