BSM brings a number of additional utilities to the Solaris operating environment. The utilities are listed here in four sections, each of which has a table below. Each table gives utility names and a short description of the task performed by each utility. The sections are identified by the man page suffix.
Table B-1 Section 1M-Maintenance Commands
Command |
Task |
---|---|
Allocate a device |
|
Control the audit daemon |
|
Initialize the audit subsystem |
|
Run the audit daemon warning script |
|
Configure auditing |
|
Control audit trail files |
|
Merge and select audit records from audit trail files |
|
Display kernel audit statistics |
|
Enable a Solaris system to use the Basic Security Module |
|
bsmunconv(1M) |
Disable the Basic Security Module and return to the Solaris operating environment (see the bsmconv(1M) man page) |
Deallocate a device |
|
Report information about a device entry in a device maps file |
|
List allocatable devices |
|
Print contents of an audit trail file |
Table B-2 Section 2-System Calls
System Call |
Task |
---|---|
Write a record to the audit log |
|
Manipulate auditing |
|
Write audit log to specified file descriptor |
|
Get process audit information |
|
Get user audit identity |
|
setaudit(2) |
Get process audit information (see getaudit(2)) |
setauid(2) |
Get user audit identity (see getauid(2)) |
Table B-3 Section 3-C Library Functions
Library Call |
Task |
---|---|
au_open(3), au_close(3), au_write(3) |
Construct and write audit records |
Preselect an audit event |
|
au_to_arg(3), au_to_attr(3), au_to_data(3), au_to_groups(3), au_to_in_addr(3), au_to_ipc(3), au_to_ipc_perm(3), au_to_iport(3), au_to_me(3), au_to_opaque(3), au_to_path(3), au_to_process(3), au_to_return(3), au_to_socket(3), au_to_text(3) |
Create audit record tokens (see au_to(3) for all of these functions) |
Get user's binary preselection mask |
|
getacinfo(3), getacdir(3), getacflg(3), getacmin(3), getacna(3), setac(3), endac(3) |
Get audit control file information |
getauclassent(3), getauclassnam(3), setauclass(3), endauclass(3), getauclassnam_r(3), getauclassent_r(3) |
Get audit_class entry |
getauditflags(3),getauditflagsbin(3), getauditflagschar(3) |
Convert audit flag specifications |
getauevent(3), getauevnam(3), getauevnum(3), getauevnonam(3), setauevent(3), endauevent(3), getauevent_r(3), getauevnam_r(3), getauevnum_r(3) |
Get audit_user entry |
getauusernam(3), getauuserent(3), setauuser(3), endauuser(3) |
Get audit_user entry |
Generate the process audit state |
Table B-4 Section 4-Headers, Tables, and Macros
Files |
Task |
---|---|
Gives format for an audit trail file |
|
Gives audit class definitions |
|
Controls information for system audit daemon |
|
Holds current information on the audit daemon |
|
Holds audit event definition and class mapping |
|
Holds per-user auditing data file |
|
Contains physical device information |
|
Contains physical device information |