praudit(1M) manual page
Table of Contents
praudit - print contents of an audit trail file
praudit [ -lrs
] [ -ddel ] [ filename ... ]
SUNWcsu
praudit reads
the listed filenames (or standard input, if no filename is specified) and
interprets the data as audit trail records as defined in audit.log(4)
. By
default, times, user and group ID
s (UID
s and GID
s, respectively) are converted
to their ASCII
representation. Record type and event fields are converted
to their ASCII
representation. A maximum of 100 audit files can be specified
on the command line.
- -l
- Prints one line per record. The record type
and event fields are always converted to their short ASCII
representation
as is done for the -s option.
- -r
- Print records in their raw form. Times, UID
s,
GID
s, record types, and events are displayed as integers. This option and
the -s option are exclusive. If both are used, a format usage error message
is output.
- -s
- Print records in their short form. All numeric fields are converted
to ASCII
and displayed. The short ASCII
representations for the record type
and event fields are used. This option and the -r option are exclusive. If
both are used, a format usage error message is output.
- -ddel
- Use del as
the field delimiter instead of the default delimiter, which is the comma.
If del has special meaning for the shell, it must be quoted. The maximum
size of a delimiter is four characters.
- /etc/security/audit_event
- /etc/security/audit_class
-
bsmconv(1M)
, audit(2)
, getauditflags(3)
,
audit.log(4)
, audit_class(4)
, audit_event(4)
group(4)
, passwd(4)
The
functionality described in this man page is available only if the Basic
Security Module (BSM) has been enabled. See bsmconv(1M)
for more information.
Table of Contents
![[Go to CFHT Home Page]](/images/cfht-icon.gif){kind=icon}
Man Pages 
Back to Software Index 
Manpage Top Level