I am trying to set audit on a directory. I can't quite seem to get the syntax
correct. I have put an acl on the directory as follows
(AUDIT=SECURITY,ACCESS=DELETE+SUCCESS)
(AUDIT=SECURITY,OPTIONS=DEFAULT,ACCESS=DELETE+SUCCESS)
I want audit to tell me when anyone deletes a file in this directory and who
deleted it.
Can you give me the correct command?
set audit/audit??
Thanks Julie
(9818) File and Directory Security, ACEs, ACLs?
Re: (9818) File and Directory Security, ACEs, ACLs?
The OpenVMS Wizard would expect you want to know when the directory
is written and when the file(s) are deleted, hence you will probably
want WRITE (and SUCCESS, or SUCCESS and FAILURE) on the directory,
and you will want DELETE (and SUCCESS, or SUCCESS and FAILURE) on
the files within the directory. The directory is written when the
file is deleted, while the file sees the deletion ACE triggered.
To maintain the ACEs on the file entries in the directory, you will
also want an OPTIONS=DEFAULT entry for the desired security setting.
This default ACE would be on the directory, and the settings would
apply to files created in the directory.
The OpenVMS System Security manual has details on ACLs and ACEs, as
well as information on Resource Identifiers and Subsystem Identifiers
and other similar mechanisms.
is written and when the file(s) are deleted, hence you will probably
want WRITE (and SUCCESS, or SUCCESS and FAILURE) on the directory,
and you will want DELETE (and SUCCESS, or SUCCESS and FAILURE) on
the files within the directory. The directory is written when the
file is deleted, while the file sees the deletion ACE triggered.
To maintain the ACEs on the file entries in the directory, you will
also want an OPTIONS=DEFAULT entry for the desired security setting.
This default ACE would be on the directory, and the settings would
apply to files created in the directory.
The OpenVMS System Security manual has details on ACLs and ACEs, as
well as information on Resource Identifiers and Subsystem Identifiers
and other similar mechanisms.