HPlogo HP Security Monitor/iX Manager's Guide: HP 3000 MPE/iX Computer Systems > Chapter 7 Auditing System Use

Logging Formats
» 

Technical documentation

Complete book in PDF
» Feedback

 » Table of Contents

 » Index

spacerspacerspacer
spacer
spacer
  		 
 

MPE/iX writes log records to records in a log file. The log records can be accessed and displayed by using the system log analysis utility (LOGTOOL) or through a user-supplied analysis program.

There are two types of log files used to record system information. There is the original 100 series format and a newer 200 series format which has been adopted to acommodate POSIX specifications. Following is a description of the formats used by each format:

Format 1## system log record header

Table 7-3 “System Log Record Header” illustrates the system log record header.

Table 7-3 System Log Record Header

Length,in 16-bit WordsField Content
1Record type
1Record length
1PIN
1Time stamp date
2Time stamp time
2Job type/Job number

 

Format 1## system log audit trailer

Table 7-4 “System Log Audit Trailer” illustrates the system log audit trailer.

Table 7-4 System Log Audit Trailer

Length, in 16-bit WordsField Content
8User name
8Logon group
8Account name
8Job/Session name

 

The system log audit trailer is currently appended to the following events:

  • job termination

  • process termination

  • physical mount/dismount

  • tape labels record

  • console log

  • program file event

  • new commercial spooling

  • password changes

  • system logging configuration

  • RESTORE logging

  • printer access failure

  • ACD changes

  • stream initiation

  • user logging

  • process creation

  • CHGROUP logging

  • FOPEN logging

Format 2## system log record header

Format 2## log records have the information normally contained within the audit trailer incorporated into the main event record.

Table 7-5 Format 2## System Log Record Content

Length, in 16-bit WordsField Content
1Record type
1Event version
1Record length
1PIN
2Job type/Job number
2Time stamp time
1Time stamp date
1Login type (If 1, logon name is in the format 16-byte user 16-byte acct)
18Logon name
8Job/Session Name
4Reserved

 

The default configuration is determined at SYSGEN. Records that are not initially used to log information are OFF; records that are enabled by default are ON. Typically, the system manager sets up and maintains the system logging configuration (this determines which records will be logged). The logging configuration can be altered using the SYSGEN utility.

Log Record Types

Here are the various log record types:

Table 7-6 Log Record Types

Log TypeRecord DescriptionState
100System LoggingON
101System UpON
102Job InitiationOFF
103Job TerminationOFF
104Process TerminationOFF
105NM File CloseOFF
106System ShutdownON
107Power FailureON
111I/O ErrorON
112Physical Mount/DismountOFF
113Logical Mount/DismountOFF
114Tape LabelOFF
115Console Log0N
116 0N
120Native Mode SpoolingON
127ChdirOFF
128Process AdoptionOFF
129File Owner Change 
130Architected Interface OFF
131Additional Processor LaunchOFF
134Password ChangeOFF
135System Logging ConfigurationON
136RestoreOFF
137Printer Access FailureOFF
138ACD ChangeOFF
139Stream InitiationOFF
140User LoggingOFF
141Process CreationOFF
142Security Configuration ChangesOFF
143ChgroupOFF
144File openOFF
145CI Command LoggingOFF
146Maintenance RequestOFF
148UPS Monitor Event LoggingOFF
150Diagnostic InformationON
151High Priority Machine CheckON
152Low-priority Machine CheckON
155Directory Open/Close LoggingOFF
160CM File Close OFF

 



Using the LOGTOOL Utility
  		 


System Log Record Formats  
Feedback to webmaster