beautypg.com

5 - audit trail, Pc and cfn time synchronization, Miscellaneous items – Gasboy CFN III Manager Manual V3.6 User Manual

Page 55: 5 – audit trail

background image

MDE-4871 CFN III Manager’s Manual for Windows® XP Embedded - Version 3.6 · August 2010

Page 5-1

Audit Trail

5 – Audit Trail

To provide traceability for system access and actions taken that may affect sensitive data, an
audit log is created. A directory c:\cfn3audit is used and daily audit files are created and stored
in that directory. The audit files will start with the prefix of AU and will be followed with a
two-digit year, two-digit month, and two-digit day. The file type or suffix is ADX.

The following is a list of items that will be logged in the audit file:

• Any command typed from SC3 window or from the Profit Point SPCL Func 30 will be

recorded in the system audit file.

• Any command executed by the system as a cron will be logged in the system audit file.
• If a script is run, such as in a cmd file, it is possible that every command in the script will

be logged in the audit file.

• When a bin command is executed that results in the change to the system configuration a

message is sent to the audit log that the system has been updated.

PC and CFN Time Synchronization

A cron is provided with a command file to allow the two systems to be synchronized. The
command timetont.cmd is used to set the PC clock to the same time as the CFN embedded
system clock. A cron is provided to provide a hidden background task to set the PC clock
every day at 2:30 A.M.

Miscellaneous Items

• If the security.cfg is missing, on reboot;a the system will send a message “Security File

Missing.”. If the security.cfg does not match the file size expected, the system will display
a message, “Security File Corrupt”.

• On page one of sys_par there is a setting used for backup password. Though it is no longer

used for obtaining a backup password it is used by the system and must be left to a default
of GASBOY.

• On page one of sys_par there is a setting for using the disk journal. This is set to a default

of yes and must be left in the default state if PCI logging requirements are to be met.

• SC3.SYS driver is located in the C:/sc3drv directory. The sc3.ini and sc3drv.exe files used

to configure the SC3 are also located in the same directory. The Gasboy user must not be
allowed to delete these three files.

• The audit files are located in the c:\sc3audit directory along with the cfn3audit.exe file.

The gasboy user must not be allowed to access audit files or the cfn3audit.exe file.

This manual is related to the following products:
See also other documents in the category Gasboy Hardware: