Museum

Home

Lab Overview

Retrotechnology Articles

Online Manuals

⇒ sat_summarize(1M) — IRIX 6.5.3f

Media Vault

Software Library

Restoration Projects

Artifacts Sought

Related Articles

audit(1M)

kill(1)

sat_interpret(1M)

sat_reduce(1M)

sat_select(1M)

satd(1M)



satsummarize(1M)                                            satsummarize(1M)



NAME
     sat_summarize - generate statistics on a stream of audit records

SYNOPSIS
     /bin/satsummarize [ -bdelotuv ] [ -z timezone ]  [ infile ]

DESCRIPTION
     sat_summarize prints a statistical summary of the audit trail to the
     standard output device.  Data is displayed either when end of file is
     reached on input or when sat_summarize receives the SIGUSR1 signal.

     Run time options determine the format of the printout and which
     statistics are presented.

OPTIONS
     -b       Print statistics in brief mode (default).

     -d       Debug mode.  Prints out additional information about the audit
              log file such as record and header size.

     -e       Display numbers of audit records found, by event type.

     -f       File descriptors are mapped to the filenames to which they apply
              whenever possible.

     -l       Linear mode.  Display the statistics in a very terse one line
              per record format.

     -o       Input (whether standard input or file input) is copied to
              standard output.  This option makes it possible to use
              sat_summarize as one of a chain of audit tools connected by
              pipes.

     -t       Print average rate of audit trail generation, in records per
              minute, and number of audit records generated in the last
              minute.

     -u       Display numbers of audit records found, by user.

     -v       By default, zero valued entries from user or event lists are not
              printed.  The verbose option enables printing of zero valued
              entries.

     -z timezone
              Set the timezone to that of the file.

     infile   Data is taken from infile.  If infile is not specified, data is
              taken, by default, from the standard input.  The format of
              infile is identical to the output generated by satd(1M) and
              sat_reduce(1M).





                                                                        Page 1





satsummarize(1M)                                            satsummarize(1M)



DEFAULT
     If no arguments are given, -e is assumed.  sat_summarize displays the
     numbers of audit records, broken down by event type.

EXAMPLE
     sat_summarize is ordinarily used in combination with other audit filters.
     To obtain audit records and display a complete statistical summary,
     execute this command sequence:

          satd -o -f /var/adm/sat | satsummarize -t -e -u


SEE ALSO
     audit(1M), kill(1), sat_interpret(1M), sat_reduce(1M), sat_select(1M),
     satd(1M).

     IRIX Admin: Backup, Security, and Accounting






































                                                                        Page 2



Typewritten Software • bear@typewritten.org • Edmonds, WA 98026