Greetings,
The answer, from Jay Lessert, is that auditing file operations with BSM
can only be done on the clients and not the NFS server itself. This is
due to the fact that the BSM audits system calls such as unlink(2),
open(2), write(2), etc., and these are executed on the client. Thanks,
Jay.
Regards,
Dan Lorenzini Greenwich Capital Markets
dal@gcm.com 600 Steamboat Road
203-625-6088 Greenwich, CT 06830
--------
Original message dated: Thu, 27 Jan 2000 10:04:06 EST
--------
>
> I am trying to use BSM (Basic Security Module) functionality under
> Solaris 7 to audit access to files on our NFS servers. I would prefer
> to do this on the server, since this would be more convenient than
> examining the audit trails of multiple clients. However, I am finding
> that the various classes of file access (file read, file write, etc.)
> only seem to work on the client. So my question is, can file access by
> clients be audited using BSM on the NFS server where the files reside,
> or can this only be done on the client itself?
This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:14:02 CDT