Cover V02, I06
Article
Figure 1
Figure 10
Figure 2
Figure 3
Figure 4
Figure 5
Figure 6
Figure 7
Figure 8
Figure 9
Table 1
Table 2
Table 3
Table 4

nov93.tar

Figure 10: Sample audit records

These sample audit records come from the dac.denials report which identifies
those events composing the Discretionary Access Control failures.

Process ID: 2002 (*INC*)        Date/Time: Sat Sep  4 09:39:00 1993
Luid: uucp  Euid: uucp  Ruid: uucp  Egid: uucp  Rgid: uucp
Supp groups: uucp
Event type: Access denial
System call: Open       Mode: Read
Object:  /tcb/files/subsys/root
Result: Failed-EACCES (Access denial)
Security policy: discretionary

Process ID: 2001 (*INC*)        Date/Time: Sat Sep  4 09:39:01 1993
Luid: uucp  Euid: uucp  Ruid: uucp  Egid: uucp  Rgid: uucp
Supp groups: uucp
Event type: Discretionary access change
System call: Chmod
Modified object:  /tmp/croutHFAa00235
Old Values for Uid: 5  Gid: 5  Mode: 100600
New Values for Uid: 5  Gid: 5  Mode: 100644
Result: Successful

Process ID: 2086 (*INC*)        Date/Time: Sat Sep  4 10:09:03 1993
Luid: uucp  Euid: uucp  Ruid: uucp  Egid: uucp  Rgid: uucp
Supp groups: uucp
Event type: Discretionary access change
System call: Chown
Modified object:  /usr/spool/uucp/LTMP.2086
Old Values for Uid: 5  Gid: 5  Mode: 100444
New Values for Uid: 5  Gid: 5  Mode: 100444
Result: Successful


 

© 2002 CMP Media LLC. All Rights Reserved.
www.sysadminmag.com