Login or Register to Ask a Question and Join Our Community


Cybersecurity

UNIX error log

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity UNIX error log
# 1  
Old 05-30-2003
UNIX error log
system administration utility has recently been installed at the SCO Openserver (UNIX) servers of our bank. While
receiving the error log files of this utility, we have noted the following warning messages:

<?xml:namespace prefix = o ns = "urn:schemas-microsoft-comSmiliefficeSmilieffice" />

· Alert: /etc: File Control Database inconsistency. The File Control Database may be compromised. Run Integrity
(ADM).



· Alert: Authentication database path /etc/shadow may be compromised - run integrity (ADM).



It may be noted that one of the functions performed by this utility is to copy etc/shadow to another directory for data
back-up purposes. We have objected to this practice.



I will appreciate if someone can guide me about the significance of the above errors.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Beginners Questions & Answers

Print Error in Console and both Error & Output in Log file - UNIX

I am writing a shell script with 2 run time arguments. During the execution if i got any error, then it needs to redirected to a error file and in console. Also both error and output to be redirected to a log file. But i am facing the below error. #! /bin/sh errExit () { errMsg=`cat... (1 Reply)
Discussion started by: sarathy_a35
1 Replies

2. Web Development

How to log http 404 error to a separate log file?

Apache Web Server: how to log http 404 error to a separate log file and i do not want to log in access.log please advice. (2 Replies)
Discussion started by: raghur77
2 Replies

3. UNIX for Dummies Questions & Answers

Error UNIX: UNIX SCO release 5.05 system does not boot

UNIX sco release 5.05 system does not boot:cannot open device hd(40)/boot stage 1 boot failure: error loading hd(40)/bootWhat to do? (2 Replies)
Discussion started by: Joaoalpande
2 Replies

4. Solaris

Log error from cron job into log file

Hi Please would it be right to log the errors from a script running in cron in the following manner: /datax/vendor/dump.sh > /datax/vendor/err.log 2>&1 (16 Replies)
Discussion started by: fretagi
16 Replies

5. Shell Programming and Scripting

What is this error log = hda: irq timeout: error=0x00 and how to solve?

what is this error log = hda: irq timeout: error=0x00 and how to solve? every day upon checking the logs i see this error. hda: irq timeout: error=0x00 hda: irq timeout: error=0x00 hda: irq timeout: error=0x00 hda: irq timeout: error=0x00 hw_client: segfault at 0000000000000046 rip... (3 Replies)
Discussion started by: avtalan
3 Replies

6. Shell Programming and Scripting

Appending error messages from log file next to the corresponding error record

Hi Everyone, I have an issue and trying to get a solution but was not succesful yet. Any help is greatly appreciated. I am using ksh to inoke sql loader to load data from txt file into two oracle tables based on the condition written in the control file. If an error occurs while loading into... (8 Replies)
Discussion started by: vpv0002
8 Replies

7. Shell Programming and Scripting

sqlplus error output to different error log file

HELLO, I am using such a command to write oracle sqlplus query result to text file: sqlplus -S xxx/xxx@xxxxxxx @\tmp\2.sql>\tmp\123.txt Is it possible to script that: If command succesfull write in \tmp\log.txt: timestamp and "succeded" and create 123.txt with results else If error... (2 Replies)
Discussion started by: tomasba
2 Replies

8. UNIX for Dummies Questions & Answers

How to route error to log file in unix

Hey Every one I have a find statement which find the files and deletes them find /web/local/orderlink/batchmanaged01/scripts/SMOappLogs/log -name 'orderlink.log.*' -type f -mtime +$10-exec rm -f {} \; This statement if finds a file at the given location it will delete the files but if it... (4 Replies)
Discussion started by: pinky
4 Replies

9. Shell Programming and Scripting

alert_oss.log oracle log file in hp-unix

Hi I have go this alert_oss.log that is basically capturing all the oracle errorlogs.Now the problem is that it is one huge file and to see log of some particular date i tried cat alert_oss.log | grep 'Mar 25 10:44:45 2007' > alert_25.txt is not giving me the required output. pls suggest ... (3 Replies)
Discussion started by: Assassin
3 Replies

10. Cybersecurity

UNIX error log

A system administration utility has recently been installed at the SCO Openserver (UNIX) servers of our bank. While receiving the error log files of this utility, we have noted the following warning messages: <?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" /> · ... (3 Replies)
Discussion started by: eysheikah
3 Replies
Login or Register to Ask a Question

LEARN ABOUT OSF1

db_archive

db_archive(8)						      System Manager's Manual						     db_archive(8)

NAME

       db_archive - displays security database log files no longer involved in active transactions (Enhanced Security)

SYNOPSIS

       /usr/tcb/bin/db_archive [-alsv] [-h home]

FLAGS

       Write  all  pathnames  as absolute pathnames, instead of relative to the database home directories.  Specify a home directory for the data-
       base.  The correct directory for enhanced security is /var/tcb/files.  Write out the pathnames of all of the database log files, whether or
       not  they  are  involved  in  active  transactions.   Write the pathnames of all of the database files that need to be archived in order to
       recover the database from catastrophic failure.	If any of the database files have not been accessed during the lifetime of the current log
       files, db_archive does not include them in this output.

       It  is  possible  that  some  of the files referenced in the log have since been deleted from the system.  In this case, db_archive ignores
       them.  When db_recover is run, any files referenced in the log that are not present during recovery are assumed to have	been  deleted  and
       are not be recovered.  Run in verbose mode, listing the checkpoints in the log files as they are reviewed.

DESCRIPTION

       A  customized  version of the Berkeley Database (Berkeley DB) is embedded in the operating system to provide high-performance database sup-
       port for critical security files.  The DB includes full transactional support and database recovery, using write-ahead logging  and  check-
       pointing to record changes.

       The  db_archive utility is provided for maintenance of the log files associated with the security database.  It writes the pathnames of log
       files that are no longer in use (that is, no longer involved in active transactions), to the standard output, one pathname per line.  These
       log  files should be written to backup media to provide for recovery in the case of catastrophic failure (which also requires a snapshot of
       the database files), but they may then be deleted from the system to reclaim disk space.  You should  perform  a  db_checkpoint	-1  before
       using db_archive.

       The  secconfig  utility can create a cron job that periodically checks the security log files and deletes those no longer in use, as deter-
       mined by db_archive. Be sure to coordinate this with the site backup schedule.

       The db_archive utility attaches to one or more of the Berkeley DB shared memory regions.  In order to avoid region  corruption,	it  should
       always be given the chance to detach and exit gracefully.  To cause db_archive to clean up after itself and exit, send it an interrupt sig-
       nal (SIGINT).

RETURN VALUES

       The db_archive utility exits 0 on success, and >0 if an error occurs.

ENVIRONMENT VARIABLES

       If the -h option is not specified and the environment variable DB_HOME is set, it is used as the path  of  the  database  home.	 The  home
       directory for security is /var/tcb/files.

FILES

       /var/tcb/files/auth.db

       /var/tcb/files/dblogs/*

RELATED INFORMATION

       Commands: db_checkpoint(8), db_dump(8), db_load(8), db_printlog(8), db_recover(8), db_stat(8), secconfig(8) delim off

																     db_archive(8)