The System Call Warning action expresses information system call-related warnings. A system call is a request made by any program to the operating system for performing tasks. System calls provide the interface between a process and the operating system. You can map any type of system call warning to this action. More severe events should be mapped to the System Call Error action.
|
Information |
Level |
|---|---|
|
Source - User Information |
Secondary |
|
Source - Host Information |
Tertiary |
|
Source - Object Information |
Tertiary |
|
Source - Process Information |
Tertiary |
|
Source - Group Information |
Tertiary |
|
Dest - User Information |
Tertiary |
|
Dest - Host Information |
Primary |
|
Dest - Object Information |
Primary |
|
Dest - Group Information |
Tertiary |
|
Agent - Information |
Primary |
|
Agent - Host Information |
Primary |
|
Event Source - Host Information |
Primary |
|
Event Source - Information |
Tertiary |
|
Event - Information |
Primary |
|
Result - Information |
Primary |
|
Result |
event_result |
event_severity |
|---|---|---|
|
Failure |
F |
4 |
Any type of broadcast message (From a user to multiple systems; between network devices).
|
Information |
Level |
|---|---|
|
Source - User Information |
Primary |
|
Source - Host Information |
Primary |
|
Source - Object Information |
Tertiary |
|
Source - Process Information |
Secondary |
|
Source - Group Information |
Tertiary |
|
Dest - User Information |
Tertiary |
|
Dest - Host Information |
Tertiary |
|
Dest - Object Information |
Tertiary |
|
Dest - Process Information |
Tertiary |
|
Dest - Group Information |
Tertiary |
|
Agent - Information |
Primary |
|
Agent - Host Information |
Primary |
|
Event Source - Host Information |
Primary |
|
Event Source - Information |
Tertiary |
|
Event - Information |
Primary |
|
Result - Information |
Primary |
|
Result |
event_result |
event_severity |
|---|---|---|
|
Success |
S |
2 |
|
Failure |
F |
3 |
|
Copyright © 2013 CA.
All rights reserved.
|
|