Question & Answer
Question
How do I use ADD DATA SINK and LOG FULL DETAILS WITH REPLACED VALUES ? Show me examples.
Answer
Two new rule actions were added to v10, not found in v9.5 or lower:
- ADD DATA SINK
- LOG FULL DETAILS WITH REPLACED VALUES
The "ADD DATA SINK" action was designed to allow the Guardium sniffer/logger to write data to multiple database destinations. However, this feature has been aborted due to some problem discovered before v10 GA. There are no plans at this time to open the feature in future. It might even be removed completely from v10 in the near future.
The "LOG FULL DETAILS WITH REPLACED VALUES" is used only for DB2 on z/OS and iSeries. When the action triggers, literal markers like :1, :2 (for static sql) or ? (for dynamic prepare) in sql statements are replaced with bind variable values before logging to Full SQL.
For example, the usual behaviour for bind statements will log 2 statements for one bind statement. One with the raw variables, and the second with the actual values:
v9.5 or lower:
- 1) SELECT * FROM table WHERE column_a = :1 AND column_b = :2;
2) SELECT * FROM table WHERE column_a = 'a' AND column_b = 'b';
When above statement is sent to v10, it will log only one statement:
v10:
- SELECT * FROM table WHERE column_a = 'a' AND column_b = 'b';
The gain in replacing with values improves performance.
Related Information
[{"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Guardium Database Activity Monitor","Platform":[{"code":"PF016","label":"Linux"}],"Version":"10.0","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21976984