CN110109809B - Method and equipment for testing log auditing function according to syslog - Google Patents
Method and equipment for testing log auditing function according to syslog Download PDFInfo
- Publication number
- CN110109809B CN110109809B CN201910274640.4A CN201910274640A CN110109809B CN 110109809 B CN110109809 B CN 110109809B CN 201910274640 A CN201910274640 A CN 201910274640A CN 110109809 B CN110109809 B CN 110109809B
- Authority
- CN
- China
- Prior art keywords
- syslog
- test
- network management
- testing
- database
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000012360 testing method Methods 0.000 title claims abstract description 217
- 238000000034 method Methods 0.000 title claims abstract description 45
- 238000007726 management method Methods 0.000 claims abstract description 80
- 238000012550 audit Methods 0.000 claims abstract description 41
- 238000004891 communication Methods 0.000 claims description 8
- 238000010276 construction Methods 0.000 claims description 5
- 238000007781 pre-processing Methods 0.000 claims description 4
- 230000006870 function Effects 0.000 description 33
- 238000010586 diagram Methods 0.000 description 6
- 230000008569 process Effects 0.000 description 4
- 238000001514 detection method Methods 0.000 description 3
- 230000007246 mechanism Effects 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 2
- 238000004590 computer program Methods 0.000 description 1
- 230000008094 contradictory effect Effects 0.000 description 1
- 230000001351 cycling effect Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000007429 general method Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/30—Monitoring
- G06F11/34—Recording or statistical evaluation of computer activity, e.g. of down time, of input/output operation ; Recording or statistical evaluation of user activity, e.g. usability assessment
- G06F11/3466—Performance evaluation by tracing or monitoring
- G06F11/3476—Data logging
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/36—Preventing errors by testing or debugging software
- G06F11/3668—Software testing
- G06F11/3672—Test management
- G06F11/3692—Test management for test results analysis
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/10—File systems; File servers
- G06F16/18—File system types
- G06F16/1805—Append-only file systems, e.g. using logs or journals to store data
- G06F16/1815—Journaling file systems
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Quality & Reliability (AREA)
- Data Mining & Analysis (AREA)
- Databases & Information Systems (AREA)
- Debugging And Monitoring (AREA)
Abstract
The embodiment of the invention provides a method and equipment for testing an audit function of a log according to syslog. The method comprises the following steps: if the test data is syslog carrying log audit content, simplifying the test data into log information, storing the log information in a text file, and acquiring the number of logs before the test in a network management end database; reading the content of any piece of log information in the text file, constructing the content of any piece of log information into syslog for testing according to the address of the network management end, and sending the syslog to a database of the network management end; if the number of the logs in the database at the network management end is increased compared with the number of the logs before the test in the database at the network management end, detecting the field value of the syslog for the test, thereby completing the test. The method and the device for testing the log auditing function according to the syslog provided by the embodiment of the invention can realize full coverage on the log auditing type and can efficiently complete the test of the related logs in version iteration.
Description
Technical Field
The embodiment of the invention relates to the technical field of computers, in particular to a method and equipment for testing a log auditing function according to syslog.
Background
In the test work of network management products, the test of log audit function is often involved. The log audit test process usually includes performing related operations on a client, such as web access, application program operation, system configuration, malicious attack, and the like, then checking whether a log of a corresponding type is generated at an equipment side, and reporting the log to a network management product, wherein entries and fields of the log are consistent with operation contents on the client. Because the types of the logs and the fields of each log are more, the log audit test is a relatively time-consuming work, and in daily version test, a relatively large amount of time and energy are consumed by a tester. Therefore, finding a method that can test the log audit function without manual testing and test script writing, thereby realizing full coverage of the log audit type and efficiently completing the related log test in version iteration becomes an urgent technical problem in the industry.
Disclosure of Invention
Aiming at the problems in the prior art, the embodiment of the invention provides a method and equipment for testing the log auditing function according to syslog.
In a first aspect, an embodiment of the present invention provides a method for testing log audit function according to syslog, including: if the test data is syslog carrying log audit content, simplifying the test data into log information, storing the log information in a text file, and acquiring the number of logs before the test in a network management end database; reading the content of any piece of log information in the text file, constructing the content of any piece of log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end; and if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, thereby completing the test.
Further, the constructing the content of any piece of log information into syslog for testing, and sending the syslog to the network management database includes: and waiting for a plurality of polling intervals, and writing the syslog for testing into a network management end database.
Further, the method for testing the log auditing function according to the syslog further comprises the following steps: if the number of the logs in the network management end database is unchanged or reduced compared with the number of the logs in the network management end database before the test is started, the test is not passed.
Further, the detecting the field value of the syslog for testing, thereby completing the testing, includes: if the field values of the syslog for testing are all correct, the test is passed.
Further, the detecting the field value of the syslog for testing, thereby completing the testing, includes: if the field value of the syslog for test has at least one error, the test fails.
Further, the method for testing the log auditing function according to the syslog further comprises the following steps: circularly executing the content of any log information in the read text file, constructing the content of any log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end; if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, and completing the test until all the test data are tested.
In a second aspect, an embodiment of the present invention provides an apparatus for auditing functions according to a syslog test log, including:
the test data preprocessing module is used for simplifying the test data into log information if the test data is syslog carrying log audit content, storing the log information in a text file and acquiring the number of logs before the test in a database at a network management terminal;
the system comprises a test syslog construction module, a network management end database and a database management end, wherein the test syslog construction module is used for reading the content of any piece of log information in the text file, constructing the content of any piece of log information into test syslog according to the address of the network management end, and sending the test syslog to the network management end database;
and the testing module is used for detecting the field value of the syslog for testing if the number of the logs in the network management end database is increased compared with the number of the logs in the network management end database before the test is started, so that the test is completed.
In a third aspect, an embodiment of the present invention provides an electronic device, including:
at least one processor; and
at least one memory communicatively coupled to the processor, wherein:
the memory stores program instructions executable by the processor to invoke a method of auditing functions according to syslog test logs provided by any of the various possible implementations of the first aspect.
In a fourth aspect, embodiments of the present invention provide a non-transitory computer readable storage medium storing computer instructions for causing a computer to perform a method according to syslog test log auditing functions provided by any of various possible implementations of the first aspect.
According to the method and the device for testing the log audit function according to the syslog, provided by the embodiment of the invention, the test data is simplified into the log information, then the log information is constructed into the syslog for test and is sent to the database at the network management terminal to be combined with the relevant judgment mechanism for detection, so that the log audit function can be tested under the condition of avoiding manual test and test script writing, the full coverage of the log audit type is realized, and the test of the relevant log can be efficiently completed in version iteration.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, a brief description will be given below to the drawings required for the description of the embodiments or the prior art, and it is obvious that the drawings in the following description are some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a flowchart of a method for testing an audit function of a log according to syslog according to an embodiment of the present invention;
fig. 2 is a schematic structural diagram of an apparatus according to an auditing function of a syslog test log according to an embodiment of the present invention;
fig. 3 is a schematic physical structure diagram of an electronic device according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention. In addition, technical features of various embodiments or individual embodiments provided by the invention can be arbitrarily combined with each other to form a feasible technical solution, but must be realized by a person skilled in the art, and when the technical solution combination is contradictory or cannot be realized, the technical solution combination is not considered to exist and is not within the protection scope of the present invention.
Currently, there is a need in the industry to find a general method for automatically testing the log audit function according to the test data, so that neither manual testing is required every time, nor is it necessary to write an automatic test script one by one. And the requirement that when a new log audit type is added to the version, the test can still be automatically carried out after test data is added is also met. The final effect is that not only can log audit types be fully covered, but also relevant tests can be efficiently completed in version iteration. Based on this consideration, an embodiment of the present invention provides a method for testing log audit function according to syslog, and referring to fig. 1, the method includes:
101. if the test data is syslog carrying log audit content, simplifying the test data into log information, storing the log information in a text file, and acquiring the number of logs before the test in a network management end database;
102. reading the content of any piece of log information in the text file, constructing the content of any piece of log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end;
103. and if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, thereby completing the test.
On the basis of the foregoing embodiment, the method for testing a log auditing function according to syslog provided in the embodiment of the present invention, where the content of any piece of log information is constructed as syslog for testing and is sent to the network management side database, includes: and waiting for a plurality of polling intervals, and writing the syslog for testing into a network management end database. The number of the polling intervals can be one, two, three or more than three, and the specific number is determined according to the time length required for writing syslog for testing into a network management database.
On the basis of the foregoing embodiment, the method for testing an audit function of a log according to syslog provided in the embodiment of the present invention further includes: if the number of the logs in the network management end database is unchanged or reduced compared with the number of the logs in the network management end database before the test is started, the test is not passed.
On the basis of the foregoing embodiment, the method for testing an audit function according to a syslog test log according to an embodiment of the present invention detects a field value of the syslog for testing, thereby completing a test, including: if the field values of the syslog for testing are all correct, the test is passed.
On the basis of the foregoing embodiment, the method for testing an audit function according to a syslog test log according to an embodiment of the present invention detects a field value of the syslog for testing, thereby completing a test, including: if the field value of the syslog for test has at least one error, the test fails.
On the basis of the foregoing embodiment, the method for testing an audit function of a log according to syslog provided in the embodiment of the present invention further includes:
circularly executing the content of any log information in the read text file, constructing the content of any log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end; if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, and completing the test until all the test data are tested.
According to the method for testing the log audit function according to the syslog, provided by the embodiment of the invention, the test data is simplified into the log information, then the log information is constructed into the syslog for test, and the syslog is sent to the database at the network management terminal to be combined with the relevant judgment mechanism for detection, so that the log audit function can be tested under the condition of avoiding manual test and test script writing, thereby realizing full coverage of the log audit type, and efficiently completing the test of the relevant logs in version iteration.
In order to more clearly illustrate the essence of the technical solution of the present invention, on the basis of the above-mentioned embodiments, an overall embodiment is proposed, which shows the overall view of the technical solution of the present invention. It should be noted that the whole embodiment is only for further embodying the technical essence of the present invention, and is not intended to limit the scope of the present invention, and those skilled in the art can obtain any combination type technical solution meeting the essence of the technical solution of the present invention by combining technical features based on the various embodiments of the present invention, and as long as the combined technical solution can be practically implemented, the combined technical solution is within the scope of the present patent. The specific technical scheme is as follows:
1) the essence of the black box test is to input test data, obtain a test result, and then compare the test result with an expected result, thereby judging whether the test passes or not. The test cases of log audit are also based on the above, so that test input and expected results need to be determined as a basis for judging whether the test is passed or not. By analyzing the logic reported by the log of the network management terminal, the network management terminal can know that the network management terminal writes the syslog into the database if the syslog is judged to be log audit after receiving the syslog sent by the equipment terminal, and then the front-end page displays the log by reading the database. Therefore, the first step is to confirm that the input test data is syslog carrying log audit content, but for the purposes of universality and convenient maintenance, the test data can be simplified into log information and stored in a text file, and then the log information is dynamically constructed into syslog according to different test equipment when the test is executed;
2) with syslog, it is equivalent to having test inputs and expected results, so that the test can begin. Before testing, the number of initial log records in the database is read and recorded firstly, so that comparison at the later stage is facilitated;
3) reading a piece of log content in the test data;
4) constructing a syslog according to the address and the log content of the target network management equipment, and then sending the syslog to a network pipe end;
5) waiting for a polling interval for the system to write syslog into the database;
6) checking whether an entry is added in the database, if not, indicating that no log record is generated and the current test is not passed; if a record is newly generated, continuing to enter the next content check;
7) checking whether each field value in the newly added records is correct, if all the field values are correct, the current test is passed, and if one or more field values are incorrect, the current test is not passed;
8) cycling steps 3) to 7) until all the test data are executed;
9) and finally, outputting a test result.
The implementation basis of the various embodiments of the present invention is realized by programmed processing performed by a device having a processor function. Therefore, in engineering practice, the technical solutions and functions thereof of the embodiments of the present invention can be packaged into various modules. Based on this reality, on the basis of the embodiments, the embodiment of the present invention provides an apparatus for testing log auditing function according to syslog, which is used for executing the method for testing log auditing function according to syslog in the above method embodiment. Referring to fig. 2, the apparatus includes:
the test data preprocessing module 201 is configured to simplify the test data into log information and store the log information in a text file if the test data is syslog carrying log audit content, and obtain the number of logs before the test starts in a database at a network management terminal;
the testing syslog constructing module 202 is configured to read content of any piece of log information in the text file, construct the content of any piece of log information as a testing syslog according to an address of a network pipe end, and send the testing syslog to the network pipe end database;
the testing module 203 is configured to detect a field value of the syslog for testing if the number of logs in the network management database is increased compared with the number of logs in the network management database before the test starts, so as to complete the test.
According to the device for testing the log audit function according to the syslog, the test data preprocessing module, the test syslog construction module and the test module are adopted, the test data are simplified into the log information, then the log information is constructed into the test syslog, the test syslog is sent to the database at the network management terminal and is combined with the relevant judgment mechanism for detection, the log audit function can be tested under the condition that manual testing and test script compiling are avoided, therefore, full coverage of the log audit type is achieved, and testing of relevant logs can be efficiently completed in version iteration.
The method of the embodiment of the invention is realized by depending on the electronic equipment, so that the related electronic equipment is necessarily introduced. To this end, an embodiment of the present invention provides an electronic apparatus, as shown in fig. 3, including: at least one processor (processor)301, a communication Interface (Communications Interface)304, at least one memory (memory)302 and a communication bus 303, wherein the at least one processor 301, the communication Interface 304 and the at least one memory 302 are configured to communicate with each other via the communication bus 303. The at least one processor 301 may call logic instructions in the at least one memory 302 to perform the following method: if the test data is syslog carrying log audit content, simplifying the test data into log information, storing the log information in a text file, and acquiring the number of logs before the test in a network management end database; reading the content of any piece of log information in the text file, constructing the content of any piece of log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end; and if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, thereby completing the test.
Furthermore, the logic instructions in the at least one memory 302 may be implemented in software functional units and stored in a computer readable storage medium when sold or used as a stand-alone product. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. Examples include: if the test data is syslog carrying log audit content, simplifying the test data into log information, storing the log information in a text file, and acquiring the number of logs before the test in a network management end database; reading the content of any piece of log information in the text file, constructing the content of any piece of log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end; and if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, thereby completing the test. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
The above-described embodiments of the apparatus are merely illustrative, and the units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment. One of ordinary skill in the art can understand and implement it without inventive effort.
Through the above description of the embodiments, those skilled in the art will clearly understand that each embodiment can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware. With this understanding in mind, the above-described technical solutions may be embodied in the form of a software product, which can be stored in a computer-readable storage medium such as ROM/RAM, magnetic disk, optical disk, etc., and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute the methods described in the embodiments or some parts of the embodiments.
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present invention. Based on this recognition, each block in the flowchart or block diagrams may represent a module, a program segment, or a portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams and/or flowchart illustration, and combinations of blocks in the block diagrams and/or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
In this patent, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
Finally, it should be noted that: the above examples are only intended to illustrate the technical solution of the present invention, but not to limit it; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.
Claims (9)
1. A method for testing log audit functionality according to syslog, comprising:
if the test data is syslog carrying log audit content, simplifying the test data into log information, storing the log information in a text file, and acquiring the number of logs before the test in a network management end database;
reading the content of any piece of log information in the text file, constructing the content of any piece of log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end;
and if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, thereby completing the test.
2. The method according to claim 1, wherein the constructing the content of any piece of log information as syslog for testing and sending the syslog to the webmaster database comprises:
and waiting for a plurality of polling intervals, and writing the syslog for testing into a network management end database.
3. The method for testing log audit functionality according to syslog according to claim 1, further comprising:
if the number of the logs in the network management end database is unchanged or reduced compared with the number of the logs in the network management end database before the test is started, the test is not passed.
4. The method according to claim 1, wherein the detecting the field value of the syslog for testing to complete the testing comprises:
if the field values of the syslog for testing are all correct, the test is passed.
5. The method according to claim 1, wherein the detecting the field value of the syslog for testing to complete the testing comprises:
if the field value of the syslog for test has at least one error, the test fails.
6. The method for testing log audit functionality according to syslog according to claim 1, further comprising:
circularly executing the content of any log information in the read text file, constructing the content of any log information into syslog for testing according to the address of the network management end, and sending the syslog to the database of the network management end; if the number of the logs in the network management side database is increased compared with the number of the logs in the network management side database before the test is started, detecting the field value of the syslog for the test, and completing the test until all the test data are tested.
7. An apparatus for testing log audit functionality according to syslog, comprising:
the test data preprocessing module is used for simplifying the test data into log information if the test data is syslog carrying log audit content, storing the log information in a text file and acquiring the number of logs before the test in a database at a network management terminal;
the system comprises a test syslog construction module, a network management end database and a database management end, wherein the test syslog construction module is used for reading the content of any piece of log information in the text file, constructing the content of any piece of log information into test syslog according to the address of the network management end, and sending the test syslog to the network management end database;
and the testing module is used for detecting the field value of the syslog for testing if the number of the logs in the network management end database is increased compared with the number of the logs in the network management end database before the test is started, so that the test is completed.
8. An electronic device, comprising:
at least one processor, at least one memory, a communication interface, and a bus; wherein,
the processor, the memory and the communication interface complete mutual communication through the bus;
the memory stores program instructions executable by the processor, the processor calling the program instructions to perform the method of any of claims 1 to 6.
9. A non-transitory computer-readable storage medium storing computer instructions that cause a computer to perform the method of any one of claims 1-6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910274640.4A CN110109809B (en) | 2019-04-08 | 2019-04-08 | Method and equipment for testing log auditing function according to syslog |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910274640.4A CN110109809B (en) | 2019-04-08 | 2019-04-08 | Method and equipment for testing log auditing function according to syslog |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110109809A CN110109809A (en) | 2019-08-09 |
| CN110109809B true CN110109809B (en) | 2020-04-10 |
Family
ID=67485271
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910274640.4A Active CN110109809B (en) | 2019-04-08 | 2019-04-08 | Method and equipment for testing log auditing function according to syslog |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110109809B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101453378A (en) * | 2008-12-30 | 2009-06-10 | 杭州华三通信技术有限公司 | Method and system for log damp and audit |
| CN104392173A (en) * | 2014-11-13 | 2015-03-04 | 普华基础软件股份有限公司 | Auditing system and audit detecting method |
| CN106815125A (en) * | 2015-12-02 | 2017-06-09 | 阿里巴巴集团控股有限公司 | A kind of log audit method and platform |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100357900C (en) * | 2005-01-20 | 2007-12-26 | 上海复旦光华信息科技股份有限公司 | Automatic extraction and analysis for formwork based on heterogenerous logbook |
| CN102521354B (en) * | 2011-12-13 | 2017-02-08 | 北京天融信科技股份有限公司 | Auditing and testing method and auditing and testing device for data base protocol |
| US9672347B2 (en) * | 2014-12-11 | 2017-06-06 | Sap Se | Integrity for security audit logs |
| US10354066B2 (en) * | 2016-02-26 | 2019-07-16 | Cylance Inc. | Retention and accessibility of data characterizing events on an endpoint computer |
| CN107818150B (en) * | 2017-10-23 | 2021-11-26 | ***通信集团广东有限公司 | Log auditing method and device |
| CN109033813B (en) * | 2018-07-09 | 2020-10-16 | 携程旅游信息技术(上海)有限公司 | Linux operation log auditing system and method |
| CN109408334B (en) * | 2018-10-24 | 2021-11-09 | 郑州云海信息技术有限公司 | Audit log characteristic test method, device, equipment and storage medium |
-
2019
- 2019-04-08 CN CN201910274640.4A patent/CN110109809B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101453378A (en) * | 2008-12-30 | 2009-06-10 | 杭州华三通信技术有限公司 | Method and system for log damp and audit |
| CN104392173A (en) * | 2014-11-13 | 2015-03-04 | 普华基础软件股份有限公司 | Auditing system and audit detecting method |
| CN106815125A (en) * | 2015-12-02 | 2017-06-09 | 阿里巴巴集团控股有限公司 | A kind of log audit method and platform |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110109809A (en) | 2019-08-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109474488B (en) | Interface testing method and device and computer equipment | |
| CN110474900B (en) | Game protocol testing method and device | |
| CN110866258B (en) | Rapid vulnerability positioning method, electronic device and storage medium | |
| CN111209206B (en) | Automatic test method and system for software products | |
| CN110297767B (en) | Automatic execution method, device, equipment and storage medium for test cases | |
| CN111711540B (en) | Method and device for identifying government and enterprise business alarm | |
| CN111353143A (en) | Sensitive authority detection method and device and storage medium | |
| CN110287700B (en) | iOS application security analysis method and device | |
| CN112817853A (en) | Automatic test method, system and electronic equipment | |
| CN111444093B (en) | Method and device for determining quality of project development process and computer equipment | |
| US10417113B1 (en) | System, method, and computer program for web testing and automation offline storage and analysis | |
| CN110109809B (en) | Method and equipment for testing log auditing function according to syslog | |
| CN110147313B (en) | Log output method and device | |
| CN110008074B (en) | Method, device and equipment for automatically testing and inquiring upper-layer interface of hardware information | |
| CN111538994A (en) | System security detection and repair method, device, storage medium and terminal | |
| CN115391224A (en) | Flow playback method and device, computer equipment and readable storage medium | |
| CN111309311B (en) | Vulnerability detection tool generation method, device, equipment and readable storage medium | |
| CN108845932B (en) | Unit testing method and device of network library, storage medium and terminal | |
| CN114676049A (en) | Case testing method and device, electronic equipment and storage medium | |
| CN114090372A (en) | Fault processing method and device | |
| CN110196793B (en) | Log analysis method and device for plug-in database | |
| CN109560964B (en) | Equipment compliance checking method and device | |
| CN113704123A (en) | Interface test method, device, equipment and storage medium | |
| CN113392021A (en) | Method, device and equipment for analyzing cluster reliability test result and readable medium | |
| CN113448786A (en) | PCIe equipment testing method, device, equipment and readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |