将提取的审计记录装载到db2表中。
log文件中的审计记录是以一种原始格式存储的。
The audit records in the db2audit.log file are stored in a raw format.
远程syslog守护进程存储的审计记录如下所示。
Example audit records stored by the remote syslog daemon would appear as follows.
如果缓冲区的大小大于0,那么审计记录是异步写的。
When the size of the buffer is greater than 0, audit records are written asynchronously.
为了防止缓冲时间过长,DB 2定时强制地写审计记录。
To prevent an extended period of buffering, DB2 forces the writing of the audit records regularly.
当对全局变量检查权限时生成CHECKING审计记录。
CHECKING audit records are generated whenever a privilege is checked for a global variable.
清单3展示了使用FILE选项提取的审计记录的一个片段。
Listing 3 shows a snippet of audit records that were extracted using the FILE option.
显然,如果每个管理员有单独的身份,这些审计记录会更有用。
Obviously, these audit records are more useful if each administrator has a separate identity.
一个简单的方法是生成一个XML表示的审计记录。
A simple approach is to generate the audit record in an XML representation. We could then use an audit table with the following format.
审计记录通常首先被写入到一个内存缓冲区,然后才刷新到磁盘。
Audit records are typically written into a memory buffer before being flushed to disk.
在对变量执行创建或删除操作时生成objmaint审计记录。
OBJMAINT audit records are generated when a variable is CREATEd or dropped.
当对全局变量授予或撤销权限时生成SECMAINT审计记录。
SECMAINT audit records are generated when a privilege is GRANTed or REVOKEed on global variables.
回调函数创建一个惟一文件名来写入已命名内存中存储的审计记录。
The callback function creates a unique file name to write the audit records stored in named memory.
这个输出结果显示每个对于bind的调用都会生成3个审计记录。
This output shows that each call to bind generated three audit records.
可以将审计记录从该文件提取到一个文本文件中,以便作进一步的分析。
Audit records can be extracted from this file into a text file that can be analyzed further.
从清单5显示的查询结果可以看出,针对失败的更新语句有一条审计记录。
From the query results, shown in Listing 5, you can see that one audit record was generated for the failed update statement.
如果该子句未指定任何内容,那么可以提取来自实例中任何数据库的审计记录。
If you do not specify anything for this clause, audit records from all databases in the instance are eligible for extraction.
当你和大型零售商做交易时,审计记录必须绝对正确,因为它们全都吃过苦头。
When you deal with the big retailers, the audit trail nowadays has to be absolutely right because they have all had their fingers burnt.
这不仅帮助团队成员互相通讯和协作,而且也为所有新的操作创建一个审计记录。
This not only helps team members communicate and collaborate with one another, but also creates a record for audits conducted against all new implementations.
表1列出了可以审计的不同类型的数据库事件,并描述了审计记录是何时生成的。
Table 1 lists the different types of database events that can be audited and describes when an audit record is generated.
关于对其他事件类型的审计记录的布局的描述,请参阅DB 2UD b文档。
Consult the DB2 UDB documentation for a description of the audit record layouts for the other event types.
在清单8中显示的查询结果中,您可以看到有一条关于失败的更新语句的审计记录。
From the query results, shown in Listing 8, you can see that one audit record was generated for the failed update statement.
然后,应用程序可以使用这个参数对用户进行授权,并对用户的活动进行审计记录。
The applications can then use this parameter to authorize users and provide an audit trail of user activity.
还可以将审计记录装载到db2表中,以便于使用SQL查询数据和生成定制的报告。
Audit records can also optionally be loaded into DB2 tables, providing the opportunity to query the data using SQL and produce customized reports.
在这种配置中,生成审计记录的事件必须等到记录被写到磁盘上,才能返回它的状态。
In this configuration, the event generating the audit record must wait until the record is written to disk before returning its status.
表2总结了清单3和清单4中显示的AUDIT事件类型的审计记录中每个字段的意思。
Table 2 summarizes the meaning of each of the fields in the audit record for the audit event type shown in Listing 3 and Listing 4.
如果将审计记录存放在DB 2表中,那么应该将这个日期值的记录放在一个方便的地方。
Keep a record of this date value in a handy place if you are keeping the audit records in DB2 tables.
当您只想对可疑处理(比如超过10%的工资变更)生成审计记录时,这个特性可能有用。
This can be useful when you want to generate auditing records only for suspicious processing like salary changes of more than 10%, for example.
提取过程所产生的文本文件由一些审计记录组成,每个记录之间以一个空白行隔开。
The text file produced by the extraction process is composed of several audit records, each separated by a blank line.
如果我们想写入数据库外部的一个文件,或者发送一个消息队列上的审计记录,又该如何做呢?
What if we want to write to a file outside the database or send the auditing record on a message queue?
应用推荐