| script for audit reporting [message #438226] |
Thu, 07 January 2010 11:00  |
divroro12
Messages: 105
Registered: March 2008
Location: Laurel, MD USA
|
Senior Member |
|
|
Hi All,
I need to put in place a UNIX shell script that calls three sql scripts & reports to the DBAs.
I already have the three sql scripts in place & they perform the following database auditing actions:
1. actions.sql
This script queries the DBA_AUDIT _TRAIL table to look for database user actions within a specific time
frame.
If the user action involves create, alter, drop, truncate, replace, grant, revoke, analyze, audit,
comment, it should shoot an email to the DBAs.
2. non-existent.sql
This script queries the DBA_AUDIT_SESSION & DBA_USERS tables to look for users that logged onto the database,
but are not in the DBA_USERS table.
If any records are found, it should shoot an email to the DBAs specifying that a non-database user logged
into the database.
3. usershareacct.sql
This script queries the DBA_AUDIT_SESSION table to check for situations whereby the same user account is logged
on more than one user terminal.
If that's the case, the DBAs should be notified by email.
So, the shell script should call the three sql scripts & report to the DBAs as per the specifications
outlined above.
Your help will be highly appreciated.
Regards,
- divroro12 -
|
|
|
|
| Re: script for audit reporting [message #438227 is a reply to message #438226] |
Thu, 07 January 2010 11:12  |
 |
Mahesh Rajendran
Messages: 10708
Registered: March 2002
Location: oracleDocoVille
|
Senior Member
Account Moderator |
|
|
Quite simple.
It would be something like this.
sqlplus -s user/[email]pass@yourDB[/email] <<EOF
spool spool_for_first.
your sql_format_options
@your_first_sql
spool off
spool spool_for_second
@your_second_sql
Spool off.
#repeat for third
#use mailx or other tool to send email.
mailx -s "this subject" [email]to_this_user@domain[/email] < this_spool_file.
#repeat
EOF
note:
use unix commands test or grep to check for specific entries in spool file. [Updated on: Thu, 07 January 2010 11:12] Report message to a moderator |
|
|
|
| Re: script for audit reporting [message #438228 is a reply to message #438227] |
Thu, 07 January 2010 11:14 |
divroro12
Messages: 105
Registered: March 2008
Location: Laurel, MD USA
|
Senior Member |
|
|
Mahesh,
note:
use unix commands test or grep to check for specific entries in spool file.[/code][/quote]
This is where my problem is; the unix commands to perform the logic...
- divroro12 -
|
|
|
|
|
|
|
|
] 
Blog
Search
Help
Members
Register
Login
Home
