ODS-AUDITOR(1) OpenDNSSEC ODS-AUDITOR(1)NAME
ods-auditor - auditor component of OpenDNSSEC
SYNOPSIS
ods-auditor [options]
DESCRIPTION
ods-auditor is a module which provides auditing capabilities to OpenDNSSEC.
Once an unsigned zone has been signed, this module is used to check that the signing process has run successfully. It checks that no data
has been lost (or non-DNSSEC data added), and that all the DNSSEC records are correct. It used the OpenDNSSEC standard logging (defined in
/etc/opendnssec/conf.xml).
The Auditor takes the signed and unsigned zones and compares them. It first parses both files, and creates transient files which are then
sorted into canonical order. These files are then processed by the Auditor. If processing an NSEC3-signed file, the Auditor will create
additional temporary files, which are processed after the main auditing run.
Specific options:
-c, --conf [PATH_TO_CONF_FILE]
Path to OpenDNSSEC configuration file
(defaults to /etc/opendnssec/conf.xml)
-k, --kasp [PATH_TO_KASP_FILE]
Path to KASP policy file
(defaults to the path given in the configuration file)
-z, --zone [ZONE_NAME]
Single zone to audit
(defaults to audit all zones)
-s,--signed [PATH_TO_SIGNED_FILE]
If a single zone is specified, then this option may override the specified signed file with another. This is for use by the signer.
(defaults to the path given in the zone list)
-v, --version
Display version information
Common options:
-h, -?, --help
Show this message
ods-auditor 1.0.0rc3 January 2010 ODS-AUDITOR(1)
Check Out this Related Man Page
ods-signer(8) OpenDNSSEC ods-signer ods-signer(8)NAME
ods-signer - OpenDNSSEC Signer Engine client
SYNOPSIS
ods-signer [-h] start | stop | reload | queue | flush | zones | verbosity <number> | update | update <zone> | sign <zone> | sign --all |
clear <zone>
DESCRIPTION
ods-signer is part of the OpenDNSSEC software. With this tool, you can send commands to the signer engine daemon. For more information, go
to http://www.opendnssec.org and visit the Documentation page.
OPTIONS -h Show this help.
DIAGNOSTICS
will log all the problems via stderr.
SEE ALSO ods-auditor(1), ods-control(8), ods-enforcerd(8), ods-hsmspeed(1), ods-hsmutil(1), ods-kaspcheck(1), ods-ksmutil(1), ods-signerd(8),
ods-timing(5), opendnssec(7), http://www.opendnssec.org/
AUTHORS
ods-signer was written by NLnet Labs as part of the OpenDNSSEC project.
OpenDNSSEC October 2010 ods-signer(8)
I am an IT auditor with a big 4 accounting firm and am cur the process of conducting an application program change audit for a large public company related to Sarbanes Oxley. This is my first time using this forum and need some assistance in verifying a fact that I believe to be true.
My client... (1 Reply)
I just started using this good free software that lets you document your entire IT infrastructure. It's called Auditor Lite or Documentor for Unix and in my opinion it's the best software out there and the fact that it is free is even better. Just thought I would let you guys know if you want to... (1 Reply)
Good day every body,
Iv've been given a list of files and directory requested by the Auditor's. My problem is how do i list the file with the permission given and also save the file into text.file so that i can passed the result/oucome to them?? Thanks alot guys!! (2 Replies)
I am an auditor and we are currently trying to identify the "Key" files in the AIX OS that we would want to be notified about if changed. I'm looking for some advice on critical files that should not change unless specifically requested by the admin. Then checksum those files and review them as... (1 Reply)
Hi, I'm an I.T. auditor and have to validate the password rules/settings (complexity rules, minimum password length, special characters, etc.)within UNIX for a client. In MS AD, i simply ask for a screen shot of the password settings. How can i do this in UNIX? help much appreciated. Also, how can... (1 Reply)
Hi
We just had an auditor tell us to formally review our logging parameters on the server and implement best practice for logging, based on a risk assessment. Phew!
Before my time here, there was no reasoning behind what we chose to log or not log.
Any ideas where such a "best practice"... (1 Reply)
Hi,
We have almost 45,000 data files created by a script daily. The file names are of format-ODS.POS.<pharmacyid>.<table name>.<timestamp>.dat. There will be one data file like this for each pharmacy and each table.(Totally around 45,000)
The requirement is to create a control file for each... (2 Replies)
How do I extract cell content from openoffice spreadsheets (ods files)?
If I e.g. have a document myspreadsheet.ods and I want to extract the content of cell A1 in sheet1, how do I do that using a linux shell script? (1 Reply)
Dear All,
this is my first post on this Forum, glad to be here.
I'm trying to fix an .ods file. Yes, I had a backup, but it's also corrupted.
When opening the document I get this EM:
read error
format error discovered in the file in sub-document content.xml at
2,337040(row,col).
So I... (3 Replies)
Dear all experts in this forum,
I have faced a audit issue as auditor told that we should not have SUID on /bin/su. As I have checked using Google, I found most of the site only telling that /bin/su should have the permission bit as -rwsr-xr-x but never explain why /bin/su need this permission... (4 Replies)