Manuals / Sybase / Computer Equipment / Server

Sybase DC35823-01-1500-04 manual Adding auditing, Audit system devices and databases

Models: DC35823-01-1500-04

1 150

Download 150 pages 34.25 Kb

Page 129

C H A P T E R 1 0 Adding Optional Functionality to

Adaptive Server

This chapter provides instructions for adding optional functionality to

Adaptive Server:

Topic

Adding auditing

Installing online help for Transact-SQL syntax

Page

113

121

After you have installed the Sybase products on your system, see the product documentation for configuration and administration issues.

Adding auditing

Auditing is an important part of security in a database management system. Security-related system activity is recorded in an audit trail, which can be used to detect penetration of the system and misuse of resources. By examining the audit trail, the System Security Officer can inspect patterns of access to objects in databases and can monitor the activity of specific users. Audit records can be traced to specific users, enabling the audit system to act as a deterrent to users who are attempting to misuse the system.

A System Security Officer manages the audit system and is the only user who can start and stop auditing, set up auditing options, and process audit data.

Audit system devices and databases

The audit system includes several components. The main components are:

•The sybsecurity device and the sybsecurity database, which stores audit information

Configuration Guide

113

Image 129

Sybase DC35823-01-1500-04 manual Adding auditing, Audit system devices and databases

Contents

15.0 Adaptive Server EnterpriseDocument ID DC35823-01-1500-04 Contents Configuring new servers with srvbuild Configuring the Operating SystemAdaptive Server Default Configuration Configuring the server for multiple network handlers ContentsStarting Adaptive Server Enterprise as IPv6-aware Conversions between server and client109 105Adding Optional Functionality to Adaptive Server 113 125Media devices About This BookThis manual contains the following chapters Introduction is an overview of Adaptive ServerRelated documents ViiiAbout This Book Adaptive Server Enterprise Other sources of information Finding the latest information on component certifications XiiRole to your MySybase profile Formatted using modified Backus Naur Form BNF notationProduct description to download the software Following sections describe conventions used in this manualXiv For a command with more optionsExamples of output from the computer appear as follows Accessibility featuresSelect, and select are the same Information about these and other terms, see the GlossaryIf you need help XviIntroduction About Adaptive ServerTopic System-specific issues System-specific issuesSystem user roles Environment variablesIntroduction Sybase Environment variablesMaster device Adaptive Server devices and system databasesSysprocsdev device Sybsystemdb deviceOptional devices and databases Adaptive Server devices and system databasesIntroduction Dsync option on by default for database device files Minimum Device Purpose Size Recommended size Adaptive Server database devicesChoosing a raw partition Client/server communication Changing Adaptive Server configuration Changing Adaptive Server configurationLanguages other than U.S. English Adaptive Server specificationsTable specifications Adaptive Server specificationsMaximum DOL table Number Column size Limits Columns 16K Data row and data page tablesDatabase requirements for varying page sizes Databases 16KDatabases 16K Data limits for tables according to page sizeTables 16K A P T E R 2 Starting and Stopping Servers OverviewRequirements for starting servers Starting servers Default start-up parameters are stored underServer start-up parameters Starting serversStarting and Stopping Servers Changing start-up parametersUsing the startserver command Starting servers when the operating system restartsUsing the monserver and backupserver commands Starting servers when the operating system restartsFor IBM RS/6000 For HP-UXFor Sun Solaris and Linux Returns If your script is named sybstart, type the followingSo on. If your script is named sybstart, type the following Starting XP Server after initial installation Starting XP Server after initial installationWhere servername is the name of the Adaptive Server Stopping serversEnter Stopping Backup ServerUsing the kill command Stopping Monitor ServerStopping servers UID PID Ppid Stime TTY Time Comd Shutdown and shared memory filesStopping servers Setting environment variables Configuring the Operating SystemConfiguring new servers with srvbuild System environment variablesVariable Sample value Function Configuring the Operating System Configuring new servers with srvbuild Using the stty setting File descriptors and user connections Restoring correct permissionsFor AIX Restoring correct permissionsFor Sun Solaris For LinuxDisplaying current soft and hard limits Increasing the soft limitSetting up the sample program to increase the hard limit Increasing the hard limitFile descriptors and user connections Maxconnections Sample programEnabling asynchronous disk I/O Enabling asynchronous disk I/OThis step is mandatory for HP users HP technical supportSelect asyncdsk and change the next boot to static To launch the Kernel Configuration use kcweb -FIssue the command Owner of the /dev/async directorySelect Change/Show Characteristics of Asynchronous I/O Enable asynchronous disk I/OThis step is mandatory for IBM users Management Interface Tool SmitAdjusting the client connection timeout period To display the current timeout period, enterTo display the current timeout value, enter Checking for hardware errors Checking for hardware errorsTo display the timeout value, enter Monitoring the use of operating system resources For Sun Solaris and Linux Sample C shell maintenance script Sample C shell maintenance script Default settings Adaptive Server Default ConfigurationDefaults for Adaptive Server parameter settings Default valueDefault settings Defaults for Backup, Monitor, and XP ServersServer Default value A P T E R 5 Setting Up Communications Across the Network Type Interfaces file Task or topic See Where to find interfaces file tasks and topicsHow a client uses directory services Creating a directory services entrySetting Up Communications Across the Network Supported directory drivers Contents of an interfaces fileHeterogeneous and homogeneous environments Chico Heterogeneous and homogeneous environmentsUnderstanding the format of the interfaces file Understanding the format of the interfaces file Components of an interfaces file entryTCP style entry looks like Components of an interfaces fileSetting Up Communications Across the Network Using a text editor to create a master interfaces file Using dsedit or dscp to create a master interfaces fileUsing a text editor Creating a master interfaces fileConfiguring the server for multiple network handlers Configuring interfaces files for multiple networksConfiguring interfaces files for multiple networks Configuring the client connectionsUsing one network-independent Dsquery name Configuring for query port backup IPv6 support Understanding IPv6Adaptive Server supports IPv6 technology IPv6 infrastructure IPv6 supportIPv6 support Starting Adaptive Server Enterprise as IPv6-aware Troubleshooting TroubleshootingServer fails to start Investigating the port assignment Error when executing an ESPInformation on how to bring XP Server up Overview Ldap directory services versus the Sybase interfaces file Ldap directory services versus the Sybase interfaces fileFor a list of attributes Interfaces file versus Ldap directory servicesLists the Sybase Ldap directory entries Sybase Ldap directory definitionsLibtcl*.cfg file on Libtcl*.cfg file Enabling Ldap directory services Enabling Ldap directory servicesWhere the ldapurl is defined as For example Ldapurl variables Keyword Description DefaultAdding a server to the directory services Adding a server to the directory servicesAdding a server entry to the directory service using dsedit Multiple directory services Encrypting the password Encrypting the passwordReplace the password with the encrypted string PerformanceMigrating from the interfaces file to Ldap Migrating from the interfaces file to Ldap Overview of localization support Customizing Localization for Adaptive ServerOverview of localization support Language modulesCustomizing Localization for Adaptive Server Default character sets for serversSupported character sets Changing the default character set for serversLists the simplified Chinese character set Lists the Baltic character setArabic character sets Character set Unilib required DescriptionLists the Cyrillic character set Lists the traditional Chinese character setLists the Eastern European character set Lists the Greek character setLists the Japanese character set Lists the Hebrew character set10 lists the Korean character set 11 lists the Thai character set13 lists the Unicode character set 14 lists the Vietnamese character set15 lists the Western European character set Conversions between server and client Character set conversionSort orders Available sort ordersSort orders Your character set definition files At a later time using the sqlloc utilitySrt file for your language. Sort orders are stored 16 Sort orders available in Adaptive ServerFor utf8, see , Configuring Character Sets, Sort Orders, Installing a new language module Language modulesMessage languages Localization Localization directoriesLocalization About the directory About the charsets directoryAbout the locales.dat file How client applications use locales.dat Editing the locales.dat file Changing the localization configurationAdaptive Server localization Changing the localization configurationConfiguring Adaptive Server for other character sets Backup Server localization100 Sort orders17 Available sort orders Language or script Sort orders File name18 lists the supported character sets and their Sybase name Character sets101 18 Sybase character set names102 Charset utility103 19 Keywords and options for charsetsKeywords Options Description 104 Adaptive Server error logging Logging Error Messages and EventsEnabling and disabling error logging Setting error log pathsSetting the Adaptive Server error log path Setting error log pathsManaging messages Logging Error Messages and EventsLogging user-defined messages 107Logging auditing events Managing messages108 Managing Adaptive Server Databases Managing database devicesDevice requirements Creating files for database devices Managing database devices110 111 Managing Adaptive Server Databases112 Audit system devices and databases Adding auditingOverview of audit installation Adding auditing114 Installing auditing Pre-installation tasks for auditing devicesAdding Optional Functionality to Adaptive Server Auditinit displays the following menuCreating a device for an audit table 116117 Creating a device for the audit database transaction log 118119 Enter y yes Press Ctrl+A again. auditinit prompts withEnter the number of the device to delete Press returnSpsyntax installation scripts Installing online help for Transact-SQL syntaxOnline syntax help spsyntax 121Installing sybsyntax Default device for the sybsyntax databaseInstalling online help for Transact-SQL syntax 122123 124 Index Symbols126 Index127 HP-UX 128Ldap 129130 Smit 131132 133 134