05-01-2013
thanks
Quote:
Originally Posted by
jim mcnamara
The file is your audit. These files will need maintenance or the disk will fill up over time
The other alternative is to turn on auditing. To help you with that we need to know the exact type of UNIX you have.
Sir I'm using ubuntu 12.10. please help me in understanding how exactly i should report multiple logins to a script..
10 More Discussions You Might Find Interesting
1. IP Networking
Any idea where can I get a freware to monitor the network traffic in my department? The best is this tool can store the log files. Thanks! (5 Replies)
Discussion started by: zheng_soon
5 Replies
2. Infrastructure Monitoring
I need some monitoring tools for SCO 7.1.4
Does anybody reccomend some software that I can install to monitor mem leaks and odd SAR values etc (2 Replies)
Discussion started by: trebor1
2 Replies
3. UNIX for Advanced & Expert Users
Guys, I would like to know who are using monitoring tools? I use Nagios before but it seems is more on Linux and Windows platform.
- Nagios
- BigBrother
- BigSister
- Cacti
- MRTG
- JFFNMS
- anymore? Please give comment too
I would like to have some comment on UNIX monitoring tools.... (2 Replies)
Discussion started by: dwarf007
2 Replies
4. Red Hat
Hi,
In HPUX there is a grate monitor tools named GLANCE, which give you
information on the disks load, memory usage, cpu ...
What is the equivalent tool in LINUX Redhat 4.
Thanks (3 Replies)
Discussion started by: yoavbe
3 Replies
5. Infrastructure Monitoring
Hi,
Are there any GUI (preferably web based) Solaris monitoring tools available for the SPARC platform.
Just to clarify, when i say GUI, I don't mean buttons to configure the Software, of course that would be a plus, but rather GUI in terms of output, like Graphs.
Thanks (6 Replies)
Discussion started by: Mack1982
6 Replies
6. Infrastructure Monitoring
Hi ,
I am new for Aix i am using IBM AIX server in our org. I am using tomcat and JDK 1.6 for our own ERP software the data base was stored in another server (windows )
i want to monitor my AIX server with graphical output from another system it is possible please help me, any other... (7 Replies)
Discussion started by: krishna_vnr`
7 Replies
7. Infrastructure Monitoring
I am interested whitch tools are the best by monitoring the UNIX processes and network interfaces ? and whitch tools for management UNIX ?
I know that the nagios very good monitoring tools, but interested me and others who have ? (4 Replies)
Discussion started by: danyy
4 Replies
8. Solaris
Hi forum
We have nearly 240 servers inclding zones . How can i monitor server and its performance by using any monitoring tools. My indentions is to plot graphs based on server utilization interms of cpu and memory
Is there any opensource tools for this.
I saw collectd and it has agent... (3 Replies)
Discussion started by: bentech4u
3 Replies
9. Infrastructure Monitoring
Hi guys,
I am currently managing an application running on around 150 servers.
I only have application usage rights on those servers and do not have any root privileges.
I have an external node that can connect to those servers and I have root privileges on that one box.
I want to setup... (2 Replies)
Discussion started by: Junaid Subhani
2 Replies
10. AIX
The monitoring tools what we have not able to see historical information about the process name or pid number for the process that consumed high CPU or memory or paging space. Can you please suggest some of the best monitoring tools available in the market that monitors primarily AIX and other Unix... (0 Replies)
Discussion started by: baladelaware73
0 Replies
audit(4) Kernel Interfaces Manual audit(4)
NAME
audit - audit trail format and other information for auditing
DESCRIPTION
Audit records are generated when users make security-relevant system calls, as well as by self-auditing processes that call (see aud-
write(2)). Access to the auditing system is restricted to super-user.
Each audit record consists of an audit record header and a record body. The record header is comprised of sequence number, process ID,
event type, and record body length. The sequence number gives relative order of all records; the process ID belongs to the process being
audited; the event type is a field identifying the type of audited activity; the length is the record body length expressed in bytes.
The record body is the variable-length component of an audit record containing more information about the audited activity. For records
generated by system calls, the body contains the time the audited event completes in either success or failure, and the parameters of the
system calls; for records generated by self-auditing processes, the body consists of the time audwrite(2) writes the records and the high-
level description of the event (see audwrite(2)).
The records in the audit trail are compressed to save file space. When a process is audited the first time, a pid identification record
(PIR) is written into the audit trail containing information that remains constant throughout the lifetime of the process. This includes
the parent's process ID, audit tag, real user ID, real group ID, effective user ID, effective group ID, group ID list, effective, permit-
ted, and retained privileges, compartment ID, and the terminal ID (tty). The PIR is entered only once per process per audit trail.
Information accumulated in an audit trail is analyzed and displayed by (see audisp(1M)).
AUTHOR
was developed by HP.
SEE ALSO
audsys(1M), audevent(1M), audisp(1M), audomon(1M), audwrite(2), audit(5), compartments(5), privileges(5).
audit(4)