file,Thu Aug 10 21:59:08 2000, + 0 msec,
header,36,2,system booted,na,Thu Aug 10 21:59:08 2000, + 869993000 msec
text,booting kernel
header,81,2,login - local,,Thu Aug 10 22:01:21 2000, + 840009500 msec
subject,root,root,other,root,other,191,191,0 0 log1
text,successful login
return,success,0
header,133,2,open(2) - write,,Thu Aug 10 22:01:21 2000, + 900004000 msec
path,/devices/pseudo/log@0:conslog
attribute,20666,root,sys,8388632,154854,5505024
subject,root,root,other,root,other,193,191,0 0 log1
return,success,3
header,113,2,execve(2),,Thu Aug 10 22:01:21 2000, + 929999000 msec
path,/sbin/sh
attribute,100555,root,root,8388632,30229,0
exec_args,1,
-sh
subject,root,root,other,root,other,193,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:01:21 2000, + 980001000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,194,191,0 0 log1
return,success,0
header,122,2,fcntl(2),,Thu Aug 10 22:01:21 2000, + 990004000 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,46,0
subject,root,root,other,root,other,195,191,0 0 log1
return,success,0
header,150,2,execve(2),,Thu Aug 10 22:01:22 2000, + 7500 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,4,
/usr/bin/grep,-v,^#,/etc/yassp.conf
subject,root,root,other,root,other,195,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 60005500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,194,191,0 0 log1
return,success,0
header,122,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 70007000 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,46,0
subject,root,root,other,root,other,196,191,0 0 log1
return,success,0
header,139,2,execve(2),,Thu Aug 10 22:01:22 2000, + 80008500 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,2,
/usr/bin/grep,DEF_UMASK=
subject,root,root,other,root,other,196,191,0 0 log1
return,success,0
header,122,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 130007000 msec
argument,2,0x1,cmd
argument,1,0x0,no path: fd
attribute,10000,root,other,48234496,47,0
subject,root,root,other,root,other,194,191,0 0 log1
return,success,0
header,164,2,execve(2),,Thu Aug 10 22:01:22 2000, + 180001000 msec
path,/usr/bin/sed
attribute,100555,root,bin,8388632,15323,0
exec_args,2,
/usr/bin/sed,s/^.*DEF_UMASK=\([0-9]\{1,\}\).*$/\1/
subject,root,root,other,root,other,194,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 250003500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,197,191,0 0 log1
return,success,0
header,122,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 260012000 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,49,0
subject,root,root,other,root,other,198,191,0 0 log1
return,success,0
header,150,2,execve(2),,Thu Aug 10 22:01:22 2000, + 280006500 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,4,
/usr/bin/grep,-v,^#,/etc/yassp.conf
subject,root,root,other,root,other,198,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 330004500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,197,191,0 0 log1
return,success,0
header,122,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 340010000 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,49,0
subject,root,root,other,root,other,199,191,0 0 log1
return,success,0
header,139,2,execve(2),,Thu Aug 10 22:01:22 2000, + 350007000 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,2,
/usr/bin/grep,SEC_UMASK=
subject,root,root,other,root,other,199,191,0 0 log1
return,success,0
header,122,2,fcntl(2),,Thu Aug 10 22:01:22 2000, + 370011000 msec
argument,2,0x1,cmd
argument,1,0x0,no path: fd
attribute,10000,root,other,48234496,50,0
subject,root,root,other,root,other,197,191,0 0 log1
return,success,0
header,164,2,execve(2),,Thu Aug 10 22:01:22 2000, + 380026500 msec
path,/usr/bin/sed
attribute,100555,root,bin,8388632,15323,0
exec_args,2,
/usr/bin/sed,s/^.*SEC_UMASK=\([0-9]\{1,\}\).*$/\1/
subject,root,root,other,root,other,197,191,0 0 log1
return,success,0
header,147,2,execve(2),,Thu Aug 10 22:01:22 2000, + 540001500 msec
path,/usr/lib/fs/ufs/quota
attribute,104511,root,bin,8388632,203924,0
exec_args,1,
/usr/sbin/quota
subject,root,root,other,root,other,200,191,0 0 log1
return,success,0
header,136,2,execve(2),,Thu Aug 10 22:01:22 2000, + 650001000 msec
path,/usr/bin/cat
attribute,100555,root,bin,8388632,15180,0
exec_args,3,
/bin/cat,-s,/etc/motd
subject,root,root,other,root,other,201,191,0 0 log1
return,success,0
header,128,2,execve(2),,Thu Aug 10 22:01:22 2000, + 770000000 msec
path,/usr/bin/mail
attribute,102511,root,mail,8388632,15276,0
exec_args,2,
/bin/mail,-E
subject,root,root,mail,root,other,202,191,0 0 log1
return,success,0
header,117,2,execve(2),,Thu Aug 10 22:01:24 2000, + 999997000 msec
path,/usr/bin/csh
attribute,100555,root,bin,8388632,15204,0
exec_args,1,
csh
subject,root,root,other,root,other,203,191,0 0 log1
return,success,0
header,121,2,execve(2),,Thu Aug 10 22:01:27 2000, + 430007000 msec
path,/usr/bin/pwd
attribute,100555,root,bin,8388632,15309,0
exec_args,2,
pwd,-ef
subject,root,root,other,root,other,204,191,0 0 log1
return,success,0
header,119,2,execve(2),,Thu Aug 10 22:01:29 2000, + 470002500 msec
path,/usr/bin/ps
attribute,100555,root,bin,8388632,11379,0
exec_args,2,
ps,-ef
subject,root,root,other,root,other,205,191,0 0 log1
return,success,0
header,127,2,execve(2),,Thu Aug 10 22:01:29 2000, + 510005500 msec
path,/usr/bin/sparcv7/ps
attribute,104511,root,sys,8388632,75526,0
exec_args,2,
ps,-ef
subject,root,root,other,root,other,205,191,0 0 log1
return,success,0
header,131,2,execve(2),,Thu Aug 10 22:01:50 2000, + 250001000 msec
path,/usr/bin/tail
attribute,100555,root,bin,8388632,15333,0
exec_args,2,
tail,/etc/system
subject,root,root,other,root,other,206,191,0 0 log1
return,success,0
header,117,2,execve(2),,Thu Aug 10 22:11:18 2000, + 580001000 msec
path,/usr/bin/pwd
attribute,100555,root,bin,8388632,15309,0
exec_args,1,
pwd
subject,root,root,other,root,other,207,191,0 0 log1
return,success,0
header,118,2,execve(2),,Thu Aug 10 22:11:20 2000, + 310013500 msec
path,/usr/bin/ls
attribute,100555,root,bin,8388632,15274,0
exec_args,2,
ls,-l
subject,root,root,other,root,other,208,191,0 0 log1
return,success,0
header,118,2,execve(2),,Thu Aug 10 22:11:33 2000, + 430001500 msec
path,/usr/bin/ls
attribute,100555,root,bin,8388632,15274,0
exec_args,2,
ls,-l
subject,root,root,other,root,other,209,191,0 0 log1
return,success,0
header,124,2,execve(2),,Thu Aug 10 22:11:52 2000, + 730025500 msec
path,/usr/bin/ls
attribute,100555,root,bin,8388632,15274,0
exec_args,3,
ls,-l,audit
subject,root,root,other,root,other,210,191,0 0 log1
return,success,0
header,134,2,execve(2),,Thu Aug 10 22:11:56 2000, + 390006500 msec
path,/usr/bin/ls
attribute,100555,root,bin,8388632,15274,0
exec_args,3,
ls,-l,audit/localhost
subject,root,root,other,root,other,211,191,0 0 log1
return,success,0
header,118,2,execve(2),,Thu Aug 10 22:12:06 2000, + 270007500 msec
path,/usr/bin/ls
attribute,100555,root,bin,8388632,15274,0
exec_args,2,
ls,-l
subject,root,root,other,root,other,212,191,0 0 log1
return,success,0
header,117,2,execve(2),,Thu Aug 10 22:21:16 2000, + 810006500 msec
path,/usr/bin/pwd
attribute,100555,root,bin,8388632,15309,0
exec_args,1,
pwd
subject,root,root,other,root,other,252,191,0 0 log1
return,success,0
header,161,2,execve(2),,Thu Aug 10 22:21:24 2000, + 310008000 msec
path,/secure/TOTAR/audit2info
attribute,100755,root,other,8388632,30316,0
exec_args,3,
/bin/sh,./audit2info,audit-data.txt
subject,root,root,other,root,other,253,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:24 2000, + 360004000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,254,191,0 0 log1
return,success,0
header,159,2,execve(2),,Thu Aug 10 22:21:24 2000, + 380002000 msec
path,/usr/bin/dirname
attribute,100555,root,bin,8388632,15211,0
exec_args,3,
/usr/bin/sh,/usr/bin/dirname,./audit2info
subject,root,root,other,root,other,254,191,0 0 log1
return,success,0
header,210,2,execve(2),,Thu Aug 10 22:21:24 2000, + 440007000 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,10,
/usr/bin/expr,./audit2info/,:,\(/\)/*[^/]*//*$,|,./audit2info/,:,\(.*[^/]\)//*[^/][^/]*//*$,|,.
subject,root,root,other,root,other,254,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:24 2000, + 540013000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,255,191,0 0 log1
return,success,0
header,132,2,execve(2),,Thu Aug 10 22:21:24 2000, + 560001000 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%Y%m%d-%H%M
subject,root,root,other,root,other,255,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:24 2000, + 610002500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,256,191,0 0 log1
return,success,0
header,127,2,execve(2),,Thu Aug 10 22:21:24 2000, + 630001500 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%Y%m%d
subject,root,root,other,root,other,256,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:24 2000, + 690001000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,257,191,0 0 log1
return,success,0
header,129,2,execve(2),,Thu Aug 10 22:21:24 2000, + 710008000 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%d-%m-%Y
subject,root,root,other,root,other,257,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:24 2000, + 770003500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,258,191,0 0 log1
return,success,0
header,126,2,execve(2),,Thu Aug 10 22:21:24 2000, + 790002500 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%H:%M
subject,root,root,other,root,other,258,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:24 2000, + 850001500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,259,191,0 0 log1
return,success,0
header,148,2,execve(2),,Thu Aug 10 22:21:24 2000, + 870002000 msec
path,/usr/bin/hostname
attribute,100555,root,bin,8388632,15247,0
exec_args,2,
/usr/bin/sh,/usr/bin/hostname
subject,root,root,other,root,other,259,191,0 0 log1
return,success,0
header,130,2,execve(2),,Thu Aug 10 22:21:24 2000, + 940012500 msec
path,/usr/bin/uname
attribute,100555,root,bin,8388632,15346,0
exec_args,2,
/bin/uname,-n
subject,root,root,other,root,other,260,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:25 2000, + 10006000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,261,191,0 0 log1
return,success,0
header,161,2,execve(2),,Thu Aug 10 22:21:25 2000, + 30006000 msec
path,/usr/bin/basename
attribute,100555,root,bin,8388632,15177,0
exec_args,3,
/usr/bin/sh,/usr/bin/basename,./audit2info
subject,root,root,other,root,other,261,191,0 0 log1
return,success,0
header,255,2,execve(2),,Thu Aug 10 22:21:25 2000, + 90009500 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,18,
/usr/bin/expr,/./audit2info,:,\(.*[^/]\)/*$,:,.*/\(..*\),:,\(.*\)$,|,/./audit2info,:,\(.*[^/]\)/*$,:,.*/\(..*\),|,/./audit2info,:,.*/\(..*\)
subject,root,root,other,root,other,261,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:21:25 2000, + 160013500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,262,191,0 0 log1
return,success,0
header,125,2,execve(2),,Thu Aug 10 22:21:25 2000, + 190004500 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,4,
expr,1,-,1
subject,root,root,other,root,other,262,191,0 0 log1
return,success,0
header,205,2,execve(2),,Thu Aug 10 22:21:25 2000, + 270005500 msec
path,/usr/bin/awk
attribute,100555,root,bin,8388632,15363,0
exec_args,9,
awk,-f,/HOME/AUDIT_UNIX/Scripts/auditawk.awk,-v,ARG_user=,-v,ARG_login=,FS=,,audit-data.txt
subject,root,root,other,root,other,263,191,0 0 log1
return,success,0
header,158,2,execve(2),,Thu Aug 10 22:27:37 2000, + 650008000 msec
path,/opt/audit/audit2info
attribute,100755,root,other,8388632,30316,0
exec_args,3,
/bin/sh,./audit2info,audit-data.txt
subject,root,root,other,root,other,279,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:37 2000, + 700006000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,280,191,0 0 log1
return,success,0
header,159,2,execve(2),,Thu Aug 10 22:27:37 2000, + 720007500 msec
path,/usr/bin/dirname
attribute,100555,root,bin,8388632,15211,0
exec_args,3,
/usr/bin/sh,/usr/bin/dirname,./audit2info
subject,root,root,other,root,other,280,191,0 0 log1
return,success,0
header,210,2,execve(2),,Thu Aug 10 22:27:37 2000, + 780010000 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,10,
/usr/bin/expr,./audit2info/,:,\(/\)/*[^/]*//*$,|,./audit2info/,:,\(.*[^/]\)//*[^/][^/]*//*$,|,.
subject,root,root,other,root,other,280,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:37 2000, + 880001000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,281,191,0 0 log1
return,success,0
header,132,2,execve(2),,Thu Aug 10 22:27:37 2000, + 900002000 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%Y%m%d-%H%M
subject,root,root,other,root,other,281,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:37 2000, + 950014500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,282,191,0 0 log1
return,success,0
header,127,2,execve(2),,Thu Aug 10 22:27:37 2000, + 980006500 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%Y%m%d
subject,root,root,other,root,other,282,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:38 2000, + 30002500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,283,191,0 0 log1
return,success,0
header,129,2,execve(2),,Thu Aug 10 22:27:38 2000, + 50007500 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%d-%m-%Y
subject,root,root,other,root,other,283,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:38 2000, + 110001500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,284,191,0 0 log1
return,success,0
header,126,2,execve(2),,Thu Aug 10 22:27:38 2000, + 130001000 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%H:%M
subject,root,root,other,root,other,284,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:38 2000, + 190007000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,285,191,0 0 log1
return,success,0
header,148,2,execve(2),,Thu Aug 10 22:27:38 2000, + 210001500 msec
path,/usr/bin/hostname
attribute,100555,root,bin,8388632,15247,0
exec_args,2,
/usr/bin/sh,/usr/bin/hostname
subject,root,root,other,root,other,285,191,0 0 log1
return,success,0
header,130,2,execve(2),,Thu Aug 10 22:27:38 2000, + 290007500 msec
path,/usr/bin/uname
attribute,100555,root,bin,8388632,15346,0
exec_args,2,
/bin/uname,-n
subject,root,root,other,root,other,286,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:38 2000, + 350000000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,287,191,0 0 log1
return,success,0
header,161,2,execve(2),,Thu Aug 10 22:27:38 2000, + 370004500 msec
path,/usr/bin/basename
attribute,100555,root,bin,8388632,15177,0
exec_args,3,
/usr/bin/sh,/usr/bin/basename,./audit2info
subject,root,root,other,root,other,287,191,0 0 log1
return,success,0
header,255,2,execve(2),,Thu Aug 10 22:27:38 2000, + 430005500 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,18,
/usr/bin/expr,/./audit2info,:,\(.*[^/]\)/*$,:,.*/\(..*\),:,\(.*\)$,|,/./audit2info,:,\(.*[^/]\)/*$,:,.*/\(..*\),|,/./audit2info,:,.*/\(..*\)
subject,root,root,other,root,other,287,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:27:38 2000, + 510005500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,288,191,0 0 log1
return,success,0
header,125,2,execve(2),,Thu Aug 10 22:27:38 2000, + 530009500 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,4,
expr,1,-,1
subject,root,root,other,root,other,288,191,0 0 log1
return,success,0
header,191,2,execve(2),,Thu Aug 10 22:27:38 2000, + 620000500 msec
path,/usr/bin/awk
attribute,100555,root,bin,8388632,15363,0
exec_args,9,
awk,-f,/opt/audit/auditawk.awk,-v,ARG_user=,-v,ARG_login=,FS=,,audit-data.txt
subject,root,root,other,root,other,289,191,0 0 log1
return,success,0
header,78,2,execve(2),,Thu Aug 10 22:36:52 2000, + 729999000 msec
path,/audit2info
subject,root,root,other,root,other,293,191,0 0 log1
return,failure: No such file or directory,-1
header,166,2,execve(2),,Thu Aug 10 22:36:56 2000, + 4500 msec
path,/opt/audit/audit2info
attribute,100755,root,other,8388632,30316,0
exec_args,5,
/bin/sh,./audit2info,-u,fman,audit-data.txt
subject,root,root,other,root,other,294,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 50009500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,295,191,0 0 log1
return,success,0
header,159,2,execve(2),,Thu Aug 10 22:36:56 2000, + 70007000 msec
path,/usr/bin/dirname
attribute,100555,root,bin,8388632,15211,0
exec_args,3,
/usr/bin/sh,/usr/bin/dirname,./audit2info
subject,root,root,other,root,other,295,191,0 0 log1
return,success,0
header,210,2,execve(2),,Thu Aug 10 22:36:56 2000, + 140001000 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,10,
/usr/bin/expr,./audit2info/,:,\(/\)/*[^/]*//*$,|,./audit2info/,:,\(.*[^/]\)//*[^/][^/]*//*$,|,.
subject,root,root,other,root,other,295,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 230013500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,296,191,0 0 log1
return,success,0
header,132,2,execve(2),,Thu Aug 10 22:36:56 2000, + 250007000 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%Y%m%d-%H%M
subject,root,root,other,root,other,296,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 310005500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,297,191,0 0 log1
return,success,0
header,127,2,execve(2),,Thu Aug 10 22:36:56 2000, + 330001500 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%Y%m%d
subject,root,root,other,root,other,297,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 379999500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,298,191,0 0 log1
return,success,0
header,129,2,execve(2),,Thu Aug 10 22:36:56 2000, + 410005000 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%d-%m-%Y
subject,root,root,other,root,other,298,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 460001500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,299,191,0 0 log1
return,success,0
header,126,2,execve(2),,Thu Aug 10 22:36:56 2000, + 480008000 msec
path,/usr/bin/date
attribute,100555,root,bin,8388632,15206,0
exec_args,2,
date,+%H:%M
subject,root,root,other,root,other,299,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 540007000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,300,191,0 0 log1
return,success,0
header,148,2,execve(2),,Thu Aug 10 22:36:56 2000, + 560010000 msec
path,/usr/bin/hostname
attribute,100555,root,bin,8388632,15247,0
exec_args,2,
/usr/bin/sh,/usr/bin/hostname
subject,root,root,other,root,other,300,191,0 0 log1
return,success,0
header,130,2,execve(2),,Thu Aug 10 22:36:56 2000, + 640006000 msec
path,/usr/bin/uname
attribute,100555,root,bin,8388632,15346,0
exec_args,2,
/bin/uname,-n
subject,root,root,other,root,other,301,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 700006500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,302,191,0 0 log1
return,success,0
header,161,2,execve(2),,Thu Aug 10 22:36:56 2000, + 720006000 msec
path,/usr/bin/basename
attribute,100555,root,bin,8388632,15177,0
exec_args,3,
/usr/bin/sh,/usr/bin/basename,./audit2info
subject,root,root,other,root,other,302,191,0 0 log1
return,success,0
header,255,2,execve(2),,Thu Aug 10 22:36:56 2000, + 790000500 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,18,
/usr/bin/expr,/./audit2info,:,\(.*[^/]\)/*$,:,.*/\(..*\),:,\(.*\)$,|,/./audit2info,:,\(.*[^/]\)/*$,:,.*/\(..*\),|,/./audit2info,:,.*/\(..*\)
subject,root,root,other,root,other,302,191,0 0 log1
return,success,0
header,144,2,fcntl(2),,Thu Aug 10 22:36:56 2000, + 860004000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,303,191,0 0 log1
return,success,0
header,125,2,execve(2),,Thu Aug 10 22:36:56 2000, + 880007000 msec
path,/usr/bin/expr
attribute,100555,root,bin,8388632,15222,0
exec_args,4,
expr,3,-,1
subject,root,root,other,root,other,303,191,0 0 log1
return,success,0
header,195,2,execve(2),,Thu Aug 10 22:36:56 2000, + 970009000 msec
path,/usr/bin/awk
attribute,100555,root,bin,8388632,15363,0
exec_args,9,
awk,-f,/opt/audit/auditawk.awk,-v,ARG_user=fman,-v,ARG_login=,FS=,,audit-data.txt
subject,root,root,other,root,other,304,191,0 0 log1
return,success,0
header,122,2,execve(2),,Thu Aug 10 22:55:52 2000, + 280002000 msec
path,/usr/sbin/init
attribute,100555,root,sys,8388632,177556,0
exec_args,2,
init,0
subject,root,root,other,root,other,306,191,0 0 log1
return,success,0
header,138,2,execve(2),,Thu Aug 10 22:55:52 2000, + 480000000 msec
path,/usr/bin/sh
attribute,100555,root,root,8388632,15256,0
exec_args,3,
sh,-c,/usr/sbin/audit -t
subject,root,root,other,root,other,307,191,0 0 log1
return,success,0
header,135,2,execve(2),,Thu Aug 10 22:55:52 2000, + 580001500 msec
path,/usr/sbin/audit
attribute,100555,root,bin,8388632,177505,0
exec_args,2,
/usr/sbin/audit,-t
subject,root,root,other,root,other,308,191,0 0 log1
return,success,0
header,36,2,system booted,na,Fri Aug 11 08:03:18 2000, + 869992500 msec
text,booting kernel
header,81,2,login - local,,Fri Aug 11 08:04:15 2000, + 830004000 msec
subject,root,root,other,root,other,190,190,0 0 log1
text,successful login
return,success,0
header,133,2,open(2) - write,,Fri Aug 11 08:04:15 2000, + 890004000 msec
path,/devices/pseudo/log@0:conslog
attribute,20666,root,sys,8388632,154854,5505024
subject,root,root,other,root,other,192,190,0 0 log1
return,success,3
header,113,2,execve(2),,Fri Aug 11 08:04:15 2000, + 919995500 msec
path,/sbin/sh
attribute,100555,root,root,8388632,30229,0
exec_args,1,
-sh
subject,root,root,other,root,other,192,190,0 0 log1
return,success,0
header,144,2,fcntl(2),,Fri Aug 11 08:04:15 2000, + 959996000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,193,190,0 0 log1
return,success,0
header,122,2,fcntl(2),,Fri Aug 11 08:04:15 2000, + 970008000 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,46,0
subject,root,root,other,root,other,194,190,0 0 log1
return,success,0
header,150,2,execve(2),,Fri Aug 11 08:04:15 2000, + 990005500 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,4,
/usr/bin/grep,-v,^#,/etc/yassp.conf
subject,root,root,other,root,other,194,190,0 0 log1
return,success,0
header,144,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 40005500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,193,190,0 0 log1
return,success,0
header,122,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 50004000 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,46,0
subject,root,root,other,root,other,195,190,0 0 log1
return,success,0
header,139,2,execve(2),,Fri Aug 11 08:04:16 2000, + 60008500 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,2,
/usr/bin/grep,DEF_UMASK=
subject,root,root,other,root,other,195,190,0 0 log1
return,success,0
header,122,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 110008000 msec
argument,2,0x1,cmd
argument,1,0x0,no path: fd
attribute,10000,root,other,48234496,47,0
subject,root,root,other,root,other,193,190,0 0 log1
return,success,0
header,164,2,execve(2),,Fri Aug 11 08:04:16 2000, + 170010000 msec
path,/usr/bin/sed
attribute,100555,root,bin,8388632,15323,0
exec_args,2,
/usr/bin/sed,s/^.*DEF_UMASK=\([0-9]\{1,\}\).*$/\1/
subject,root,root,other,root,other,193,190,0 0 log1
return,success,0
header,144,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 240001000 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,196,190,0 0 log1
return,success,0
header,122,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 250010000 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,49,0
subject,root,root,other,root,other,197,190,0 0 log1
return,success,0
header,150,2,execve(2),,Fri Aug 11 08:04:16 2000, + 260005500 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,4,
/usr/bin/grep,-v,^#,/etc/yassp.conf
subject,root,root,other,root,other,197,190,0 0 log1
return,success,0
header,144,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 310005500 msec
argument,2,0x1,cmd
path,/devices/pseudo/cn@0:console
attribute,20620,root,tty,8388632,154849,0
subject,root,root,other,root,other,196,190,0 0 log1
return,success,0
header,122,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 320004500 msec
argument,2,0x1,cmd
argument,1,0x1,no path: fd
attribute,10000,root,other,48234496,49,0
subject,root,root,other,root,other,198,190,0 0 log1
return,success,0
header,139,2,execve(2),,Fri Aug 11 08:04:16 2000, + 330007500 msec
path,/usr/bin/grep
attribute,100555,root,bin,8388632,15243,0
exec_args,2,
/usr/bin/grep,SEC_UMASK=
subject,root,root,other,root,other,198,190,0 0 log1
return,success,0
header,122,2,fcntl(2),,Fri Aug 11 08:04:16 2000, + 350011500 msec
argument,2,0x1,cmd
argument,1,0x0,no path: fd
attribute,10000,root,other,48234496,50,0
subject,root,root,other,root,other,196,190,0 0 log1
return,success,0
header,164,2,execve(2),,Fri Aug 11 08:04:16 2000, + 360003500 msec
path,/usr/bin/sed
attribute,100555,root,bin,8388632,15323,0
exec_args,2,
/usr/bin/sed,s/^.*SEC_UMASK=\([0-9]\{1,\}\).*$/\1/
subject,root,root,other,root,other,196,190,0 0 log1
return,success,0
header,147,2,execve(2),,Fri Aug 11 08:04:16 2000, + 510006000 msec
path,/usr/lib/fs/ufs/quota
attribute,104511,root,bin,8388632,203924,0
exec_args,1,
/usr/sbin/quota
subject,root,root,other,root,other,199,190,0 0 log1
return,success,0
header,136,2,execve(2),,Fri Aug 11 08:04:16 2000, + 610003500 msec
path,/usr/bin/cat
attribute,100555,root,bin,8388632,15180,0
exec_args,3,
/bin/cat,-s,/etc/motd
subject,root,root,other,root,other,200,190,0 0 log1
return,success,0
header,128,2,execve(2),,Fri Aug 11 08:04:16 2000, + 760001000 msec
path,/usr/bin/mail
attribute,102511,root,mail,8388632,15276,0
exec_args,2,
/bin/mail,-E
subject,root,root,mail,root,other,201,190,0 0 log1
return,success,0
header,117,2,execve(2),,Fri Aug 11 08:07:28 2000, + 839997000 msec
path,/usr/bin/csh
attribute,100555,root,bin,8388632,15204,0
exec_args,1,
csh
subject,root,root,other,root,other,202,190,0 0 log1
return,success,0
header,132,2,execve(2),,Fri Aug 11 08:07:36 2000, + 850001500 msec
path,/usr/bin/vi
attribute,100555,root,bin,8388632,15218,0
exec_args,2,
vi,/etc/resolv.conf
subject,root,root,other,root,other,203,190,0 0 log1
return,success,0
header,129,2,open(2) - read,write,,Fri Aug 11 08:07:36 2000, + 919997500 msec
path,/devices/pseudo/mm@0:zero
attribute,20666,root,sys,8388632,154859,3407884
subject,root,root,other,root,other,203,190,0 0 log1
return,success,3
header,117,2,creat(2),,Fri Aug 11 08:07:37 2000, + 249996000 msec
path,/var/tmp/Ex0000000203
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,203,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:07:37 2000, + 249996000 msec
path,/var/tmp/Ex0000000203
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,203,190,0 0 log1
return,success,4
header,117,2,unlink(2),,Fri Aug 11 08:07:37 2000, + 269994000 msec
path,/var/tmp/Ex0000000203
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,203,190,0 0 log1
return,success,0
header,117,2,creat(2),,Fri Aug 11 08:07:37 2000, + 289995000 msec
path,/var/tmp/Ex0000000203
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,203,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:07:37 2000, + 289995000 msec
path,/var/tmp/Ex0000000203
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,203,190,0 0 log1
return,success,4
header,117,2,unlink(2),,Fri Aug 11 08:07:40 2000, + 249999500 msec
path,/var/tmp/Ex0000000203
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,203,190,0 0 log1
return,success,0
header,132,2,execve(2),,Fri Aug 11 08:07:53 2000, + 570009000 msec
path,/usr/bin/vi
attribute,100555,root,bin,8388632,15218,0
exec_args,2,
vi,/etc/resolv.conf
subject,root,root,other,root,other,204,190,0 0 log1
return,success,0
header,129,2,open(2) - read,write,,Fri Aug 11 08:07:53 2000, + 630004500 msec
path,/devices/pseudo/mm@0:zero
attribute,20666,root,sys,8388632,154859,3407884
subject,root,root,other,root,other,204,190,0 0 log1
return,success,3
header,117,2,creat(2),,Fri Aug 11 08:07:53 2000, + 739999000 msec
path,/var/tmp/Ex0000000204
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,204,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:07:53 2000, + 739999000 msec
path,/var/tmp/Ex0000000204
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,204,190,0 0 log1
return,success,4
header,117,2,unlink(2),,Fri Aug 11 08:07:53 2000, + 759994000 msec
path,/var/tmp/Ex0000000204
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,204,190,0 0 log1
return,success,0
header,117,2,creat(2),,Fri Aug 11 08:07:53 2000, + 779995000 msec
path,/var/tmp/Ex0000000204
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,204,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:07:53 2000, + 779995000 msec
path,/var/tmp/Ex0000000204
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,204,190,0 0 log1
return,success,4
header,112,2,creat(2),,Fri Aug 11 08:08:03 2000, + 839995000 msec
path,/etc/resolv.conf
attribute,100640,root,other,8388632,158812,0
subject,root,root,other,root,other,204,190,0 0 log1
return,success,5
header,117,2,unlink(2),,Fri Aug 11 08:08:03 2000, + 939999000 msec
path,/var/tmp/Ex0000000204
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,204,190,0 0 log1
return,success,0
header,115,2,execve(2),,Fri Aug 11 08:09:12 2000, + 859998000 msec
path,/usr/bin/vi
attribute,100555,root,bin,8388632,15218,0
exec_args,1,
vi
subject,root,root,other,root,other,205,190,0 0 log1
return,success,0
header,129,2,open(2) - read,write,,Fri Aug 11 08:09:12 2000, + 920007500 msec
path,/devices/pseudo/mm@0:zero
attribute,20666,root,sys,8388632,154859,3407884
subject,root,root,other,root,other,205,190,0 0 log1
return,success,3
header,117,2,creat(2),,Fri Aug 11 08:09:13 2000, + 9996000 msec
path,/var/tmp/Ex0000000205
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,205,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:09:13 2000, + 9996000 msec
path,/var/tmp/Ex0000000205
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,205,190,0 0 log1
return,success,4
header,117,2,unlink(2),,Fri Aug 11 08:09:15 2000, + 930000500 msec
path,/var/tmp/Ex0000000205
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,205,190,0 0 log1
return,success,0
header,136,2,execve(2),,Fri Aug 11 08:09:20 2000, + 120008000 msec
path,/usr/bin/cat
attribute,100555,root,bin,8388632,15180,0
exec_args,2,
cat,/etc/nsswitch.conf
subject,root,root,other,root,other,206,190,0 0 log1
return,success,0
header,134,2,execve(2),,Fri Aug 11 08:09:25 2000, + 370008000 msec
path,/usr/bin/vi
attribute,100555,root,bin,8388632,15218,0
exec_args,2,
vi,/etc/nsswitch.conf
subject,root,root,other,root,other,207,190,0 0 log1
return,success,0
header,129,2,open(2) - read,write,,Fri Aug 11 08:09:25 2000, + 430006500 msec
path,/devices/pseudo/mm@0:zero
attribute,20666,root,sys,8388632,154859,3407884
subject,root,root,other,root,other,207,190,0 0 log1
return,success,3
header,117,2,creat(2),,Fri Aug 11 08:09:25 2000, + 509996500 msec
path,/var/tmp/Ex0000000207
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,207,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:09:25 2000, + 509996500 msec
path,/var/tmp/Ex0000000207
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,207,190,0 0 log1
return,success,4
header,117,2,unlink(2),,Fri Aug 11 08:09:25 2000, + 529997000 msec
path,/var/tmp/Ex0000000207
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,207,190,0 0 log1
return,success,0
header,117,2,creat(2),,Fri Aug 11 08:09:25 2000, + 549995500 msec
path,/var/tmp/Ex0000000207
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,207,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:09:25 2000, + 549995500 msec
path,/var/tmp/Ex0000000207
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,207,190,0 0 log1
return,success,4
header,85,2,creat(2),,Fri Aug 11 08:10:30 2000, + 149995000 msec
path,/etc/nsswitch.conf
subject,root,root,other,root,other,207,190,0 0 log1
return,success,5
header,117,2,unlink(2),,Fri Aug 11 08:10:30 2000, + 260000000 msec
path,/var/tmp/Ex0000000207
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,207,190,0 0 log1
return,success,0
header,127,2,execve(2),,Fri Aug 11 08:10:40 2000, + 90009000 msec
path,/usr/bin/vi
attribute,100555,root,bin,8388632,15218,0
exec_args,2,
vi,/etc/vfstab
subject,root,root,other,root,other,208,190,0 0 log1
return,success,0
header,129,2,open(2) - read,write,,Fri Aug 11 08:10:40 2000, + 150007500 msec
path,/devices/pseudo/mm@0:zero
attribute,20666,root,sys,8388632,154859,3407884
subject,root,root,other,root,other,208,190,0 0 log1
return,success,3
header,117,2,creat(2),,Fri Aug 11 08:10:40 2000, + 229999500 msec
path,/var/tmp/Ex0000000208
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,208,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:10:40 2000, + 229999500 msec
path,/var/tmp/Ex0000000208
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,208,190,0 0 log1
return,success,4
header,117,2,unlink(2),,Fri Aug 11 08:10:40 2000, + 249996500 msec
path,/var/tmp/Ex0000000208
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,208,190,0 0 log1
return,success,0
header,117,2,creat(2),,Fri Aug 11 08:10:40 2000, + 269995000 msec
path,/var/tmp/Ex0000000208
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,208,190,0 0 log1
return,success,4
header,117,2,open(2) - read,write,,Fri Aug 11 08:10:40 2000, + 269995000 msec
path,/var/tmp/Ex0000000208
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,208,190,0 0 log1
return,success,4
header,78,2,creat(2),,Fri Aug 11 08:12:14 2000, + 729999500 msec
path,/etc/vfstab
subject,root,root,other,root,other,208,190,0 0 log1
return,success,5
header,117,2,unlink(2),,Fri Aug 11 08:12:14 2000, + 839999500 msec
path,/var/tmp/Ex0000000208
attribute,100600,root,other,8388636,71803,0
subject,root,root,other,root,other,208,190,0 0 log1
return,success,0
file,Fri Aug 11 08:12:14 2000, + 0 msec,