Chapter 14. Syslog and Auditing Utilities
Terms you'll need to understand:
The syslog facility
The syslog source facilities
The syslog severity levels
The logger command
The who, whodo, and lastlogins commands
Techniques you'll need to master:
Configuring the syslog facility
Enabling syslog messages to track use of the root login account
Using the who, whodo, and last commands to audit login account usage
The first part of this chapter covers the Solaris 8 syslog facility. This mechanism provides the ability to log user and system messages in one or more files on the local or a remote system. This chapter covers the Solaris Syslog test objectives.
The second part of this chapter describes three commands (who, whodo, and last) for auditing ...