Log Types: OracleLog
- Leigh Purdie (Unlicensed)
Analytics
Overview
One of the more widely known enterprise DBM systems, the Oracle database generates a range of log data.
Collection
Snare Central is able to collect Oracle data on Solaris and Linux using the Snare Epilog agent.
Oracle events on windows can be either written to disk as per unix systems, or can be pushed to the Windows Application log.
Sample Events
ORADbSvr1 OracleLog 0 Node23a zInst 20th of october LENGTH:[1] "236" SESSIONID: "9963 39" ENTRYID: "5" STATEMENT: "9" USERID: "SYSTEM" USERHOST: "test.test.com" TERMINAL: "pts/3" ACTION: "43" RETURNCODE: "0" OBJ$NAME: "USERTEST" OS$USERID: oracle PRIV$USED: "22"
Fields
Field | Description |
|---|---|
DATE | Event date, in the format YYYY-MM-DD |
TIME | Event time, in the format HH:MM:SS |
SYSTEM | The source system |
TABLE | OracleLog |
NODE | Database node |
INSTANCE | Database instance |
SESSIONID | Session identifier |
ENTRYID | Entry ID |
STATEMENT |
|
USERID |
|
USERHOST |
|
TERMINAL |
|
ACTION |
|
RETURNCODE |
|
COMMENTS |
|
OSUSERID |
|
PRIV |
|
STRINGS | Any details provided as part of the event, that are not allocated to other fields. |
Notes
-