Solved

Tracking file access in Solaris

Posted on 2011-09-15
8
390 Views
Last Modified: 2012-06-27
Hi,

I started at a new gig who is running Solaris and they need to know of a way to track when files have been accessed, changed or deleted and by whom.  Is there any package that can do that?

Thanks!

--Ben
0
Comment
Question by:Ben Conner
8 Comments
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547165
AIDE should be able to do what you want.

Here is a link to get it going on Solaris 10
0
 

Author Comment

by:Ben Conner
ID: 36547191
Hi Papertrip,

This will answer the question of who modified and/or deleted a file?   From the writeup I can see where it can detect a file that's been altered, but no mention of which account did it.  Am I missing something?

--Ben
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547214
I'm not sure if there is anything out there that will do exactly that.  AIDE is meant to be a tool to use in conjunction with the usual stuff, it's basically open source Tripwire.
0
Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
LVL 48

Accepted Solution

by:
Tintin earned 500 total points
ID: 36547350
You can use Solaris Basic Security Mode (BSM), which is a native Solaris package for auditing all types of things.

man bsm

for more info

0
 
LVL 77

Expert Comment

by:arnold
ID: 36547352
Subversion/cvs might be what you are looking for.  Access to the file can only be obtained through them and they will maintain versioning as well as records of access.

depending on the file and what their purpose is.

is this a document management type of mechanism you are looking for?
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547354
Interesting I never heard of that.  Will it report which user modified a specific file?
0
 
LVL 21

Expert Comment

by:Papertrip
ID: 36547355
Woops my last comment was @Tintin
0
 

Author Closing Comment

by:Ben Conner
ID: 36548971
Wow.  BSM looks like RACF on an IBM mainframe in terms of functionality.  This will definitely do what they wanted it to.

Thanks much!

--Ben
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question