|
HP OpenVMS Systemsask the wizard |
|
The Question is: I am trying to set audit on a directory. I can't quite seem to get the syntax correct. I have put an acl on the directory as follows (AUDIT=SECURITY,ACCESS=DELETE+SUCCESS) (AUDIT=SECURITY,OPTIONS=DEFAULT,ACCESS=DELETE+SUCCESS) I want audit to tell me when anyone deletes a file in this directory and who deleted it. Can you give me the correct command? set audit/audit?? Thanks Julie The Answer is : The OpenVMS Wizard would expect you want to know when the directory is written and when the file(s) are deleted, hence you will probably want WRITE (and SUCCESS, or SUCCESS and FAILURE) on the directory, and you will want DELETE (and SUCCESS, or SUCCESS and FAILURE) on the files within the directory. The directory is written when the file is deleted, while the file sees the deletion ACE triggered. To maintain the ACEs on the file entries in the directory, you will also want an OPTIONS=DEFAULT entry for the desired security setting. This default ACE would be on the directory, and the settings would apply to files created in the directory. The OpenVMS System Security manual has details on ACLs and ACEs, as well as information on Resource Identifiers and Subsystem Identifiers and other similar mechanisms.
|