Apakah ada alasan Anda ingin menemukan kembali roda? Mengapa tidak menggunakan audit bawaan Oracle?
Oracle Base memberikan beberapa info dasar tentang cara memulai Audit:
AUDIT_TRAIL = { none | os | db | db,extended | xml | xml,extended }
Daftar berikut memberikan deskripsi setiap setelan:
none or false - Auditing is disabled.
db or true - Auditing is enabled, with all audit records stored in the database audit trial (SYS.AUD$).
db,extended - As db, but the SQL_BIND and SQL_TEXT columns are also populated.
xml- Auditing is enabled, with all audit records stored as XML format OS files.
xml,extended - As xml, but the SQL_BIND and SQL_TEXT columns are also populated.
os- Auditing is enabled, with all audit records directed to the operating system's audit trail.
Untuk mengaktifkan audit ke jejak audit basis data, aktifkan audit ke db
SQL> ALTER SYSTEM SET audit_trail=db,extended SCOPE=SPFILE;
System altered.
Matikan &mulai ulang db
SQL> SHUTDOWN
Database closed.
Database dismounted.
ORACLE instance shut down.
SQL> STARTUP
ORACLE instance started.
Sekarang untuk mengaudit SELECTS , INSERTS , UPDATES , DELETES oleh pengguna cube lakukan ini:
CONNECT sys/password AS SYSDBA
AUDIT ALL BY cube BY ACCESS;
AUDIT SELECT TABLE, UPDATE TABLE, INSERT TABLE, DELETE TABLE BY cube BY ACCESS;
Log yang diaudit dapat ditampilkan dengan menanyakan DBA_AUDIT_TRAIL
Bacaan lebih lanjut:
