| Property | Description |
| Parameter type | String |
| Syntax |
|
| | facility_clause::=
|
| | priority_clause::=
|
| Default value | There is no default value. |
| Modifiable | No |
| Basic | No |
| Examples | AUDIT_SYSLOG_LEVEL = 'KERN.EMERG';AUDIT_SYSLOG_LEVEL = 'LOCAL1.WARNING'; |
AUDIT_SYSLOG_LEVEL allows SYS and standard OS audit records to be written to the system audit log using the SYSLOG utility.
If you use this parameter, it is best to assign a file corresponding to every combination of facility and priority (especially KERN.EMERG) in syslog.conf . Sometimes these are assigned to print to the console in the default syslog.conf file. This can become annoying and will be useless as audit logs. Also, if you use this parameter, it is best to set the maximum length of syslog messages in the system to 512 bytes.
If AUDIT_SYSLOG_LEVEL is set and SYS auditing is enabled (AUDIT_SYS_OPERATIONS = TRUE), then SYS audit records are written to the system audit log.If AUDIT_SYSLOG_LEVEL is set and standard audit records are being sent to the operating system (AUDIT_TRAIL = OS), then standard audit records are written to the system audit log.
Note:
1. See Oracle Database Security Guide for more information about configuring the syslog audit trail by using the AUDIT_SYSLOG_LEVEL parameter
2. Query for the current value of the parameter
select name, value, isdefault, isses_modifiable, issys_modifiable,
isinstance_modifiable, isdeprecated, description
from v$parameter where upper(name) = 'AUDIT_SYSLOG_LEVEL';
| NAME | VALUE | IS DEFAULT | ISSES_ MODIFIABLE | ISSYS_ MODIFIABLE | ISINSTANCE_ MODIFIABLE | IS DEPRECATED | DESCRIPTION |
| audit_syslog_level | | TRUE | FALSE | FALSE | FALSE | FALSE | Syslog facility and level |
No comments:
Post a Comment