Infrastructure Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Solaris 10 - Audit Size too big

Mr.CluelessApr 25 2018 — edited May 3 2018

Hello there!

It seems my Solaris 10 audit log file size has been growing rapidly recently. (Daily it is taking up size as big as 2-4GB)

I am not sure how to go about with this, it is taking up resources.

Is it wise to set the limit size (<200mb)

Or what is recommended to do about this situation?

Below is the config I have

+++++++++++++++++++++++++++++++

bash-3.2$ cat /etc/security/audit_control

# ident "@(#)audit_control.txt 1.4 00/07/17 SMI"

dir:/var/audit

flags:lo,ua,fd

minfree:20

naflags:lo,ua,fd

plugin:name=audit_syslog.so; p_flags=lo,ua,fd

+++++++++++++++++++++++++++++++

Thanks for the assistance!

This post has been answered by Mr.Clueless on May 3 2018

Jump to Answer

Locked Post

New comments cannot be posted to this locked post.

Locked on May 31 2018

Added on Apr 25 2018

#audit, #oracle-solaris, #solaris-10

2 comments

336 views