Lesson 1

Process and user accounting provide ways for system administrators to reduce the size and severity of headaches caused by troubleshooting security problems. In this lesson, you will learn how to monitor exactly what is happening on your system and how to use utilities and files to help you solve any problems you may encounter.
You always work hard to avoid experiencing major system problems, but sometimes it is unavoidable.
There probably will be a time when you log in to your system and notice that it is acting abnormally; for example, it may be acting a little sluggish. This might not be cause for alarm, since many of your programmers are in the process of testing new systems.
But, maybe your machine has been compromised and someone is downloading all your confidential software. This module will teach you how to detect problems such as these.

After completing this module, you will be able to:

1. Describe system accounting
2. Describe process accounting
3. Describe process auditing
4. Describe user auditing
5. Use logfiles for accounting and auditing

The next lesson introduces you to system accounting.