Operating System - HP-UX

1832152 Members

3584 Online

110038 Solutions

Audit filter + ServiceGuard

Hi Gurus,

is there a possibility to filter auditing on mounted FS from ServiceGuard package ? Is there some specifix syntax for such filesystem needed in filter.conf ?

running HPUX 11.31 with AuditExt

AuditExt B.11.31.04.01 HP-UX Audit Extensions

I'm able to exclude auditing "normal" fs mountpoints eg. on /tmp:

/tmp: <never>

but not fs mounted byt serviceguard package, eg. /omni_shared (dataprotector shared fs),

/omni_shared: <never>

(auditing log is really extensivelly filled during periodic dataprotector database maintenance [acl records]), and no audit records for this are really needed.

So idea is filter out auditing on mentioned filesystem(mountpoint)

all conditions from man page are met:

a) The absolute pathname of a mount point that matches one of those in
/etc/mnttab. Note that pathname with characters other than
alphanumeric, dash, dot, underscore, and slash characters cannot be
given any rules.

(/omni_shared IS in /etc/mnttab)

any suggestions really apreciated...

Tom

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Audit filter + ServiceGuard

Audit filter + ServiceGuard