Oracle7 Server Administrator's Guide

Contents Index Home Previous Next

Guidelines for Auditing

This section describes guidelines for auditing and includes the following topics:

Audit via the Database or Operating System

The data dictionary of every database has a table named SYS.AUD$, commonly referred to as the database audit trail.

Either the database or operating system audit trail can store all audit records generated as the result of statement, privilege, or object auditing.

Your operating system may or may not support database auditing to the operating system audit trail. If this option is available, consider the advantages and disadvantages of using either the database or operating system auditing trail to store database audit records.

Using the database audit trail offers the following advantages:

Alternatively, your operating system audit trail may allow you to consolidate audit records from multiple sources including Oracle and other applications. Therefore, examining system activity might be more efficient because all audit records are in one place.

See Also: Your operating system may also contain an audit trail that stores audit records generated by the operating system auditing facility. However, this facility is operating system-dependent. See your operating system-specific Oracle documentation.

Keep Audited Information Manageable

Although auditing is relatively inexpensive, limit the number of audited events as much as possible. This will minimize the performance impact on the execution of statements that are audited, and minimize the size of the audit trail.

Use the following general guidelines when devising an auditing strategy:

Auditing Suspicious Database Activity

When you audit to monitor suspicious database activity, use the following guidelines:

See Also: For more information about the audit trail, see "Protecting the Audit Trail" [*].

Auditing Normal Database Activity

When your purpose for auditing is to gather historical information about particular database activities, use the following guidelines:


Contents Index Home Previous Next