BSM Reference

B

BSM brings a number of additional utilities to the Solaris operating environment. The utilities are listed here in four sections, each of which has a table below. Each table gives utility names and a short description of the task performed by each utility. The sections are identified by the man page suffix.

Table B-1

Command	Task
`allocate(1M)`	Allocate a device
`audit(1M)`	Control the audit daemon
`audit_startup(1M)`	Initialize the audit subsystem
`audit_warn(1M)`	Run the audit daemon warning script
`auditconfig(1M)`	Configure auditing
`auditd(1M)`	Control audit trail files
`auditreduce(1M)`	Merge and select audit records from audit trail files
`auditstat(1M)`	Display kernel audit statistics
`bsmconv(1M)`	Enable a Solaris system to use the Basic Security Module
`bsmunconv(1M)`	Disable the Basic Security Module and return to the Solaris operating environment (see the `bsmconv(1M)` man page)
`deallocate(1M)`	Deallocate a device

Table B-1 (Continued)

Command	Task
`dminfo(1M)`	Report information about a device entry in a device maps file
`list_devices(1M)`	List allocatable devices
`praudit(1M)`	Print contents of an audit trail file

Table B-2

System Call	Task
`audit(2)`	Write a record to the audit log
`auditon(2)`	Manipulate auditing
`auditsvc(2)`	Write audit log to specified file descriptor
`getaudit(2)`	Get process audit information
`getauid(2)`	Get user audit identity
`setaudit(2)`	Get process audit information (see `getaudit(2)`)
s`etauid(2)`	Get user audit identity (see `getauid(2)`)

Table B-3

Library Call	Task
`au_open(3), au_close(3), au_write(3)`	Construct and write audit records
`au_preselect(3)`	Preselect an audit event
`au_to_arg(3), au_to_attr(3), au_to_data(3),` `au_to_groups(3), au_to_in_addr(3), au_to_ipc(3),` `au_to_ipc_perm(3), au_to_iport(3), au_to_me(3),` `au_to_opaque(3), au_to_path(3), au_to_process(3),` `au_to_return(3), au_to_socket(3), au_to_text(3)`	Create audit record tokens (see `au_to(3)` for all of these functions)
`au_user_mask(3)`	Get user's binary preselection mask
`getacinfo(3), getacdir(3), getacflg(3),` `getacmin(3), getacna(3), setac(3), endac(3)`	Get audit control file information

Table B-3 (Continued)

Library Call	Task
`getauclassent(3), getauclassnam(3), setauclass(3),` `endauclass(3), getauclassnam_r(3),` `getauclassent_r(3)`	Get `audit_class` entry
`getauditflags(3),getauditflagsbin(3),` `getauditflagschar(3)`	Convert audit flag specifications
`getauevent(3), getauevnam(3), getauevnum(3),` `getauevnonam(3), setauevent(3), endauevent(3),` `getauevent_r(3), getauevnam_r(3), getauevnum_r(3)`	Get `audit_user` entry
`getauusernam(3), getauuserent(3), setauuser(3),` `endauuser(3)`	Get `audit_user` entry
`getfauditflags(3)`	Generate the process audit state

Table B-4

Files	Task
`audit.log(4)`	Gives format for an audit trail file
`audit_class(4)`	Gives audit class definitions
`audit_control(4)`	Controls information for system audit daemon
`audit_data(4)`	Holds current information on the audit daemon
`audit_event(4)`	Holds audit event definition and class mapping
`audit_user(4)`	Holds per-user auditing data file
`device_allocate(4)`	Contains physical device information
`device_maps(4)`	Contains physical device information