|
access.dat
|
This database contains information about all the users who
areauthorized to access Symantec ESM and their passwords. For the
Register only user, this also includes the privilege level. Erasing
this database erases all users except the super-user from Symantec
ESM. Symantec ESM will have a blank password. This database is
found only on the manager.
|
|
agent.dat
|
The database contains the agent information on all registered
agents. This database is found only on the manager.
|
|
dbq_client.dat
|
This database contains the security information that is needed
to make a TCP/IP connection to a Symantec ESM server. The client
software is the part that requests information; for example the
host that initiates the connection.
|
|
dbq_server.dat
|
This database contains the security information that is needed
to complete a TCP/IP connection from a Symantec ESM client. The
client software is the part that requests information; for example
the host that initiates the connection.
|
|
domain.dat
|
This database contains the current domain names and a list of
the agents in each domain that are valid for this manager. This
database is found only on the manager.
|
|
filefind.dir
|
This database contains information on all the suid and sgid
files. This database is not created until the first run of the
agent.
|
|
filefind.pag
|
This database contains information on all the suid and sgid
files. This database is not created until the first run of the
agent.
|
|
job.dat
|
This database contains the current jobs that are valid on this
manager. This database is found only on the manager.
|
|
keyring.dat
|
This database contains the user account permissions of all the
users who are authorized to access Symantec ESM. This information
includes the Register only user. This database is found only on the
manager.
|
|
license.dat
|
This database contains the current licensing information for the
manager. This database is found only on the manager.
|
|
lock.dat
|
This database keeps track of the database locks. This database
is found only on the manager.
|
|
message.dat
|
This database contains the message information that has been
uploaded from all of the registered agents. If you change a rating
or message in one of the .m files, you must run the register
program to update this database. This database is found only on the
manager.
|
|
module.dat
|
This database contains all the module security checks and the
host type, for example UNIX, that are available for each agent that
Symantec ESM will query during a run. This information is updated
during the update process.
|
|
policy.dat
|
This database contains the policy information for all the
policies that are defined on the manager. The database contains the
policy names, the modules that are associated with each policy, and
the security checks for each module. This database is found only on
the manager.
|
|
sifdev.dat
|
This file contains the device file snapshot. Comparisons made by
Symantec ESM during a job run between the device files found on the
system and those in the device file snapshot determine whether a
device file is new, changed, or deleted. This file is not created
until the first Object Integrity module is run on that agent. The
file is found on all agents.
|
|
siffile.dat
|
This file contains the file attributes snapshot. Comparisons
made by Symantec ESM during a job run between the file attributes
found on the system and those in the file attributes snapshot
determine whether a file has changed its m-time, c-time, file size,
or CRC value. There is a listing of only the files contained in the
template files. This file is not created until the first File
Attributes module is run on that agent. This file is found on all
agents.
|
|
sifgroup.dat
|
This file contains the group snapshot. Comparisons made by
Symantec ESM during a job run between the groups found on the
system and those in the group snapshot determine whether a group is
new, changed, or deleted. There is a listing of all the groups
contained in the /etc/group file. This file is not created until
the first Account Integrity module is run on the agent. This file
is found on all agents.
|
|
sifuser.dat
|
This file contains the users snapshot. Comparisons made by
Symantec ESM during a job run between the users found on the system
and those in the users snapshot determine whether a user is new,
changed, or deleted. There is a listing of all the users contained
in the /etc/passwd file. This file is not created until the first
Account Integrity module is run on the agent. The file is found on
all agents.
|
|
status.dat
|
This database contains a list of all the current jobs still
available to the Symantec ESM report writer and the current status
of those jobs.
|
|
sticky.dat
|
This database contains all the changes from the default values
for any information that is displayed in the GUI. This database
allows Symantec ESM to reflect a change to all values when the
window is redisplayed. This file is found only on the manager.
|
|
summary.dat
|
The manager uses information in the sumfinal.dat database to
update the ESM console. Summary.dat records are no longer used
because they constrain scalability.
|
|
suppress.dat
|
This database contains information on all the suppressions that
are currently valid for policy runs on this manager. This file is
found only on the manager.
|
|
sumfinal.dat
|
This database contains the finalizer summary records, one record
for each policy run. The ESM console summary database looks at the
sub-final records when it updates the summary tree.
|
|
tmpllay.dat
|
This file contains the format information for templates, for
example columns sizes and headings, types of data, and acceptable
field values.
|
|
tmplsubt.dat
|
This file contains matches the template names and template types
to the operating systems.
|
