When first called, getacdir() provides information about the first audit directory in the audit_control file; thereafter, it returns the next directory in the
file. Successive calls list all the directories listed in audit_control(4)
The parameter len specifies the length of the buffer dir. On return, dir points to the directory entry.
getacmin() reads the minimum value from the audit_control file and returns the value in min_val. The minimum value specifies how full the file
system to which the audit files are being written can get before the script audit_warn(1M) is invoked.
getacflg() reads the system audit value from the audit_control file and returns the value in auditstring. The parameter len specifies the length of the buffer auditstring.
getacna() reads the system audit value for non-attributable audit events from the audit_control file and returns the value in auditstring.
The parameter len specifies the length of the buffer auditstring. Non-attributable events are events that cannot be attributed to an individual user. inetd(1M) and several other daemons record non-attributable events.
Calling setac rewinds the audit_control file to allow repeated searches.
Calling endac closes the audit_control file when processing is complete.
|