HP OpenVMS Systems

ask the wizard
Content starts here

File and Directory Security, ACEs, ACLs?

» close window

The Question is:

I am trying to set audit on a directory. I can't quite seem to get the syntax
 correct. I have put an acl on the directory as follows
I want audit to tell me when anyone deletes a file in this directory and who
 deleted it.
Can you give me the correct command?
set audit/audit??
Thanks Julie

The Answer is :

  The OpenVMS Wizard would expect you want to know when the directory
  is written and when the file(s) are deleted, hence you will probably
  want WRITE (and SUCCESS, or SUCCESS and FAILURE) on the directory,
  and you will want DELETE (and SUCCESS, or SUCCESS and FAILURE) on
  the files within the directory.  The directory is written when the
  file is deleted, while the file sees the deletion ACE triggered.
  To maintain the ACEs on the file entries in the directory, you will
  also want an OPTIONS=DEFAULT entry for the desired security setting.
  This default ACE would be on the directory, and the settings would
  apply to files created in the directory.
  The OpenVMS System Security manual has details on ACLs and ACEs, as
  well as information on Resource Identifiers and Subsystem Identifiers
  and other similar mechanisms.

answer written or last revised on ( 29-AUG-2004 )

» close window