Several reports available from the Text Console can indicate breaches in system security or potential security abuse or concerns.
Use the following reports and options to review security issues. For details on specific reports see Reports Overview.
The Mailbox Dump Report can be run for specific mailboxes to obtain information about mailbox activity, including login status and usage statistics.
The Idle Mailboxes Report lists mailboxes with no activity. This listing contains any unassigned or non-initialized mailboxes in the server.
The Mailbox Totals Report gives the same type of information as the Idle Mailboxes Report, except that it covers all mailboxes in the system.
The Mailbox Data Inquiry Report provides summary statistics for a single mailbox or a range of mailboxes.
The Mailbox Data Report contains information on the number of recent failed login attempts and on the date of the last mailbox owner login. Because this report covers all mailboxes and contains extensive information, it is the last report used to examine potential abuse problems.
Mailbox searches can locate mailboxes that meet certain criteria (such as those with a specific FCOS or GCOS, or those without a passcode, or with the tutorial enabled). If you suspect system abuse, you can identify the mailboxes involved by performing a search with the right criteria.
If you are the system administrator, you can obtain an Audit Trail Report of all users logged in during a specified period. After logging in, each subsequent activity performed during a session at a maintenance console is recorded in the audit trail.
Recorded information includes:
User ID
Time and date of activity
Menus reached
Actions taken
Additional details you specify
Only the system administrator can configure and manage an audit trail. Audit trail options include:
Start and stop the audit trail
Review the audit trail report; each activity is recorded as a separate numbered entry
Specify the maximum entries (up to 999,999) in an audit trail
Specify the type of information that comprises an entry (entry details)
Specify a range of entries to report
The audit trail resembles the system Logfile, but it does not need to be cleared. When the specified maximum number of entries is reached, the server continues to record new information, overwriting the oldest information and beginning again at entry 1. The system issues a warning, in the error log, when the number of entries reaches 85%, 90% and 95% of the maximum.
Web Console:
Text Console: