RE: Audit network?

From: Don Granaman <granaman_at_cox.net>
Date: Thu, 3 Jan 2013 10:07:09 -0600
Message-ID: <005701cde9cc$63082210$29186630$_at_cox.net>

Thanks Mark.

I found note 1241325.1 this morning, but seems though that the problem is not limited to that one issue. I have experimented with it and several such errors and none ever produced an audit record. Bug 9856585 is suspended because the filer did not pursue. I filed an SR and they said that there were two others who filed a similar SR, but nobody ever pursed it.. So, I am attempting to open a new bug report on it.

Call me cranky, but "audit network" has been around for a long time - since 9iR2 at least - and it has (apparently) never actually worked. IMHO Oracle should either (a) fix it or (b) remove it from the documentation and make
"audit network" return an error. It is deceiving and sometimes dangerous to
be misled into thinking that something is happening (e.g. in this case, being audited) when it is not.

-Don

-----Original Message-----
From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Bobak, Mark
Sent: Wednesday, January 02, 2013 4:48 PM To: granaman_at_cox.net; oracle-l_at_freelists.org Subject: RE: Audit network?

Don,

I have zero experience with it, but a quick MOS check, I found Doc ID 1241325.1.

In 11.2.0.x, at least, apparently there's an open bug, 9856585.

-Mark

-----Original Message-----
From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Don Granaman
Sent: Wednesday, January 02, 2013 3:21 PM To: oracle-l_at_freelists.org
Subject: Audit network?

After many years of experience with Oracle auditing, I have only recently discovered "SQL> audit network". It will supposedly audit failures due to things like:
"ORA-12650: No common encryption or data integrity algorithm".

However, in both 10.2.0.4 and 11.2.0.3, I have tested this with several failure scenarios and it seems to never actually generate an audit trail record.

Google and MOS searches finds only the very short and uninformative standard documentation that shows how to enable and disable it ("audit network" and
"noaudit network") - and a few references to books that do no better than to
simply parrot the docs.

Does anyone here know any more about this?

Thanks!
Don Granaman - OraSaurus

--
http://www.freelists.org/webpage/oracle-l




--
http://www.freelists.org/webpage/oracle-l


--
http://www.freelists.org/webpage/oracle-l

Received on Thu Jan 03 2013 - 17:07:09 CET

This message: [ Message body ]
Next message: John Clarke: "Re: Large discrepancy between 'log file parallel write' and 'db file parallel write' times"
Previous message: Christopher.Taylor2_at_parallon.net: "RE: VMs on SSDs or 7500 rpm SATAs?"
In reply to: Bobak, Mark: "RE: Audit network?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message