Path: csiph.com!newsfeed.hal-mli.net!feeder3.hal-mli.net!newsfeed.hal-mli.net!feeder1.hal-mli.net!border3.nntp.dca.giganews.com!border1.nntp.dca.giganews.com!border4.nntp.dca.giganews.com!border2.nntp.dca.giganews.com!nntp.giganews.com!nx02.iad01.newshosting.com!newshosting.com!69.16.185.11.MISMATCH!npeer01.iad.highwinds-media.com!news.highwinds-media.com!feed-me.highwinds-media.com!postnews.google.com!glegroupsg2000goo.googlegroups.com!not-for-mail From: Antony Newsgroups: comp.databases.sybase Subject: Re: Identify Table Users without Audit in Sybase Date: Tue, 3 Apr 2012 22:04:13 -0700 (PDT) Organization: http://groups.google.com Lines: 11 Message-ID: <3125280.0.1333515853953.JavaMail.geo-discussion-forums@pbvy6> References: <24339140.2200.1333018435484.JavaMail.geo-discussion-forums@vbtv42> NNTP-Posting-Host: 210.48.49.225 Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 X-Trace: posting.google.com 1333515854 28315 127.0.0.1 (4 Apr 2012 05:04:14 GMT) X-Complaints-To: groups-abuse@google.com NNTP-Posting-Date: Wed, 4 Apr 2012 05:04:14 +0000 (UTC) In-Reply-To: <24339140.2200.1333018435484.JavaMail.geo-discussion-forums@vbtv42> Complaints-To: groups-abuse@google.com Injection-Info: glegroupsg2000goo.googlegroups.com; posting-host=210.48.49.225; posting-account=NnXtTwoAAAABgWhO-BeH3pCDvor0eHtW User-Agent: G2/1.0 X-Received-Bytes: 1612 Xref: csiph.com comp.databases.sybase:608 > >The DBA tells me that audits can be enabled only on the entire database and is out of the question. > You can selectively audit an object: sp_audit 'select','all','your_table_name','on' Above command will audit all select access to the specified table. Do the same for as many tables as you need to know about. If the auditing burden is considered too high, you can audit a few at a time. Likewise, you can audit any stored procs that read from the table to see who is calling them. Auditing is your friend - use it :)