This manual page is for Mac OS X version 10.6.3

If you are running a different version of Mac OS X, view the documentation locally:

  • In Terminal, using the man(1) command

Reading manual pages

Manual pages are intended as a quick reference for people who already understand a technology.

  • For more information about the manual page format, see the manual page for manpages(5).

  • For more information about this technology, look for other documentation in the Apple Reference Library.

  • For general information about writing shell scripts, read Shell Scripting Primer.


PRAUDIT(1)                               BSD General Commands Manual                              PRAUDIT(1)

NAME
     praudit -- print the contents of audit trail files

SYNOPSIS
     praudit [-lpx] [-r | -s] [-d del] [file ...]

DESCRIPTION
     The praudit utility prints the contents of the audit trail files to the standard output in human-read-able human-readable
     able form.  If no file argument is specified, the standard input is used by default.

     The options are as follows:

     -d del  Specifies the delimiter.  The default delimiter is the comma.

     -l      Prints the entire record on the same line.  If this option is not specified, every token is
             displayed on a different line.

     -p      Specify this option if input to praudit is piped from the tail(1) utility.  This causes praudit
             to sync to the start of the next record.

     -r      Prints the records in their raw, numeric form.  This option is exclusive from -s.

     -s      Prints the tokens in their short form.  Short text representations for record and event type
             are displayed.  This option is exclusive from -r.

     -x      Print audit records in the XML output format.

     If the raw or short forms are not specified, the default is to print the tokens in their long form.
     Events are displayed as per their descriptions given in /etc/security/audit_event; UIDs and GIDs are
     expanded to their names; dates and times are displayed in human-readable format.

FILES
     /etc/security/audit_class    Descriptions of audit event classes.
     /etc/security/audit_event    Descriptions of audit events.

SEE ALSO
     auditreduce(1), audit(4), auditpipe(4), audit_class(5), audit_event(5)

HISTORY
     The OpenBSM implementation was created by McAfee Research, the security division of McAfee Inc., under
     contract to Apple Computer Inc. in 2004.  It was subsequently adopted by the TrustedBSD Project as the
     foundation for the OpenBSM distribution.

AUTHORS
     This software was created by McAfee Research, the security research division of McAfee, Inc., under
     contract to Apple Computer Inc.  Additional authors include Wayne Salamon, Robert Watson, and SPARTA
     Inc.

     The Basic Security Module (BSM) interface to audit records and audit event stream format were defined
     by Sun Microsystems.

BSD                                           November 5, 2006                                           BSD

Reporting Problems

The way to report a problem with this manual page depends on the type of problem:

Content errors
Report errors in the content of this documentation with the feedback links below.
Bug reports
Report bugs in the functionality of the described tool or API through Bug Reporter.
Formatting problems
Report formatting mistakes in the online version of these pages with the feedback links below.

Did this document help you? Yes It's good, but... Not helpful...