Solved

Tracking file access in Solaris

Posted on 2011-09-15
8
406 Views
Last Modified: 2012-06-27
Hi,

I started at a new gig who is running Solaris and they need to know of a way to track when files have been accessed, changed or deleted and by whom.  Is there any package that can do that?

Thanks!

--Ben
0
Comment
Question by:Ben Conner
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
8 Comments
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547165
AIDE should be able to do what you want.

Here is a link to get it going on Solaris 10
0
 

Author Comment

by:Ben Conner
ID: 36547191
Hi Papertrip,

This will answer the question of who modified and/or deleted a file?   From the writeup I can see where it can detect a file that's been altered, but no mention of which account did it.  Am I missing something?

--Ben
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547214
I'm not sure if there is anything out there that will do exactly that.  AIDE is meant to be a tool to use in conjunction with the usual stuff, it's basically open source Tripwire.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 48

Accepted Solution

by:
Tintin earned 500 total points
ID: 36547350
You can use Solaris Basic Security Mode (BSM), which is a native Solaris package for auditing all types of things.

man bsm

for more info

0
 
LVL 78

Expert Comment

by:arnold
ID: 36547352
Subversion/cvs might be what you are looking for.  Access to the file can only be obtained through them and they will maintain versioning as well as records of access.

depending on the file and what their purpose is.

is this a document management type of mechanism you are looking for?
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547354
Interesting I never heard of that.  Will it report which user modified a specific file?
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547355
Woops my last comment was @Tintin
0
 

Author Closing Comment

by:Ben Conner
ID: 36548971
Wow.  BSM looks like RACF on an IBM mainframe in terms of functionality.  This will definitely do what they wanted it to.

Thanks much!

--Ben
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This tech tip describes how to install the Solaris Operating System from a tape backup that was created using the Solaris flash archive utility. I have used this procedure on the Solaris 8 and 9 OS, and it shoudl also work well on the Solaris 10 rel…
Every server (virtual or physical) needs a console: and the console can be provided through hardware directly connected, software for remote connections, local connections, through a KVM, etc. This document explains the different types of consol…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question