Open System Services Management and Operations Guide (G06.25+, H06.03+)
Managing Security
Open System Services Management and Operations Guide—527191-002
8-3
Administrative Files and Directories
Access to OSS auditing logs occurs through the Safeguard audit reduction tool
(SAFEART) program. UNIX directories and files such as the following are not
provided and therefore do not require monitoring:
°
In /var:
aculog
adm/acct, adm/lastlog, adm/loginlog, adm/messages, adm/pacct,
adm/utmp or adm/utmpx, adm/wwtmp or adm/wtmpx
spool/atrun or spool/ftp
sulog, vold.log, or xferlog
°
In /usr:
adm/wtmp (FTP login log)
etc/rpc.mountd (NFS access log)
lib/aliases
local/etc/http/logs/access_log
•
The OSS environment uses the following files and directories that might be found
on UNIX systems:
°
In /dev:
null
tty
°
In /etc:
hosts and hosts.equiv
inetd.conf and install_obsolete
magic
named.boot
printcap and printcap.sample
profile and profile.sample
protocols
resolv.conf
services
termcap
°
In /var:
/adm/cron/.proto, /adm/cron/cron.allow, /adm/cron/cron.deny,
and /adm/cron/queuedefs
preserve
spool/cron and spool/pcnfs
tmp