Property | Description |
Parameter type | String |
Syntax |
|
| facility_clause::=
|
| priority_clause::=
|
Default value | There is no default value. |
Modifiable | No |
Basic | No |
Examples | AUDIT_SYSLOG_LEVEL = 'KERN.EMERG';
AUDIT_SYSLOG_LEVEL = 'LOCAL1.WARNING'; |
AUDIT_SYSLOG_LEVEL
allows SYS
and standard OS
audit records to be written to the system audit log using the SYSLOG
utility.
If you use this parameter, it is best to assign a file corresponding to every combination of facility and priority (especially KERN.EMERG
) in syslog.conf
. Sometimes these are assigned to print to the console in the default syslog.conf
file. This can become annoying and will be useless as audit logs. Also, if you use this parameter, it is best to set the maximum length of syslog messages in the system to 512 bytes.
If AUDIT_SYSLOG_LEVEL
is set and SYS
auditing is enabled (AUDIT_SYS_OPERATIONS
= TRUE
), then SYS
audit records are written to the system audit log.If AUDIT_SYSLOG_LEVEL
is set and standard audit records are being sent to the operating system (AUDIT_TRAIL
= OS
), then standard audit records are written to the system audit log.
Note:
1. See Oracle Database Security Guide for more information about configuring the syslog audit trail by using the AUDIT_SYSLOG_LEVEL
parameter
2. Query for the current value of the parameter
select name, value, isdefault, isses_modifiable, issys_modifiable,
isinstance_modifiable, isdeprecated, description
from v$parameter where upper(name) = 'AUDIT_SYSLOG_LEVEL';
NAME | VALUE | IS DEFAULT | ISSES_ MODIFIABLE | ISSYS_ MODIFIABLE | ISINSTANCE_ MODIFIABLE | IS DEPRECATED | DESCRIPTION |
audit_syslog_level | | TRUE | FALSE | FALSE | FALSE | FALSE | Syslog facility and level |
No comments:
Post a Comment