AUDIT_ENCODE_NV_STRING(3) Linux Audit API AUDIT_ENCODE_NV_STRING(3)NAME
audit_encode_nv_string - encode a name/value pair in a string
SYNOPSIS
#include <libaudit.h>
int audit_encode_nv_string(const char *name, const char *value, unsigned int vlen)
DESCRIPTION
This function is used to encode a name/value pair. This should be used on any field being logged that potentially contains a space, a dou-
ble-quote, or a control character. Any value containing those have to be specially encoded for the auparse library to correctly handle the
value. The encoding method is designed to prevent log injection attacks where malicious values could cause parsing errors.
To use this function, pass the name string and value strings on their respective arguments. If the value is likely to have a NUL value
embedded within it, you will need to pass a value length that tells in bytes how big the value is. Otherwise, you can pass a 0 for vlen and
the function will simply use strlen against the value pointer. Also be aware that the name of the field will cause auparse to do certain
things when interpretting the value. If the name is uid, a user id value in decimal is expected. Make sure that well known names are used
for their intended purpose or that there is no chance of name collision with something new.
RETURN VALUE
Returns a freshly malloc'ed string that the caller must free or NULL on error.
SEE ALSO audit_log_user_message(3), audit_log_user_comm_message(3), audit_log_user_avc_message(3), audit_log_semanage_message(3).
AUTHOR
Steve Grubb
Red Hat Sept 2008 AUDIT_ENCODE_NV_STRING(3)
Check Out this Related Man Page
AUDIT_ENCODE_NV_STRING(3) Linux Audit API AUDIT_ENCODE_NV_STRING(3)NAME
audit_encode_nv_string - encode a name/value pair in a string
SYNOPSIS
#include <libaudit.h>
char *audit_encode_nv_string(const char *name, const char *value, unsigned int vlen)
DESCRIPTION
This function is used to encode a name/value pair. This should be used on any field being logged that potentially contains a space, a dou-
ble-quote, or a control character. Any value containing those have to be specially encoded for the auparse library to correctly handle the
value. The encoding method is designed to prevent log injection attacks where malicious values could cause parsing errors.
To use this function, pass the name string and value strings on their respective arguments. If the value is likely to have a NUL value
embedded within it, you will need to pass a value length that tells in bytes how big the value is. Otherwise, you can pass a 0 for vlen and
the function will simply use strlen against the value pointer. Also be aware that the name of the field will cause auparse to do certain
things when interpretting the value. If the name is uid, a user id value in decimal is expected. Make sure that well known names are used
for their intended purpose or that there is no chance of name collision with something new.
RETURN VALUE
Returns a freshly malloc'ed string that the caller must free or NULL on error.
SEE ALSO audit_log_user_message(3), audit_log_user_comm_message(3), audit_log_user_avc_message(3), audit_log_semanage_message(3).
AUTHOR
Steve Grubb
Red Hat Oct 2010 AUDIT_ENCODE_NV_STRING(3)
Hi all,
I want to create a new user and grant him ONLY transfer files access to a specific directory where he can only upload and read the files. He should be restricted to this activity only.
Regards (6 Replies)
Hi everyone,
I know the following questions are noobish questions but I am asking them because I am confused about the basics of history behind UNIX and LINUX.
Ok onto business, my questions are-:
Was/Is UNIX ever an open source operating system ?
If UNIX was... (21 Replies)
Hi,
Last 2 weeks I have searched many forums and i haven't found the answer for the question:
How to get all command output to Putty title?
Needed it for other programs to know when some jobs on a server is done and is it done right or wrong. Plink stdout and stdin wasn't working, i used many... (1 Reply)
anyone have any idea how do to this with auth_attr?
I suspect if I grant him
solaris.device.:RO::Device Allocation::help=DevAllocHeader.html
that will work but I'm unsure. Just looking for a second opinion. (10 Replies)
I am looking for a stable, reliable system to replace my current Windows systems in the home. These are simple systems that I purchased from the local Big Box store.
I have heard many good things about Unix and it's various children and it sounds like a good option to me. I have worked... (2 Replies)
We have a lot of scripts using cut as :
cut -c 0-8 --works for cut (GNU coreutils) 5.97, but does not work for cut (GNU coreutils) 8.4.
Gives error -
cut: fields and positions are numbered from 1
Try `cut --help' for more information.
The position needs to start with 1 for later... (6 Replies)
I've got a problem with a proxy configuration. We have an LDAP group that lists all users who are authorised to use the proxy to FTP (usually Filezilla) out to the world, and by implication those not in the group should be denied. My users are delighted that this has been enabled and those that... (9 Replies)
hi folks,
how to using tar with exclude directory and compress it using tar.Z
i only know how to exclude dir only with this command below:
tar -cvf /varios/restore/test.tar -X excludefile.txt /jfma/test1/
how to compress it using 1 command?
Thanx
Please use CODE tags as... (6 Replies)
Hello All,
I had recently learnt a bit of Docker(which provides containerization process).
Here are some of my learning points from it.
Let us start first with very basic question:
What is Docker:
Docker is a platform for sysadmins and developers to DEPLOY, DEVELOP and RUN applications ... (7 Replies)
What is the point of this? Whenever I close my shell it appends to the history file without adding this. I have never seen it overwrite my history file.
# When the shell exits, append to the history file instead of overwriting it
shopt -s histappend (3 Replies)
Hello for all,
I am testing the behavior of a 32 bit application running on Solaris 5.10 (SPARC), and realize it reaches 4GB of memory and then crashes.
It doesn't matter the amount of used memory as application is intended to perform many transactions; rather, what I want to achieve is to... (2 Replies)