|
|
last log
Could it be possible for a user that logined in the machine and not
showed from the "last" command? Or could it possible for a user to
get rid of his login id showing from "last" command"? I mean could it
possible to modify the "last" command's log?
Thanks for advice.
|
|
0
|
|
|
|
Reply
|
 tim_batiees (19)
|
6/18/2006 3:03:19 AM |
|
In article <1150599799.410941.216410@f6g2000cwb.googlegroups.com>,
tim_batiees@hotmail.com wrote:
> Could it be possible for a user that logined in the machine and not
> showed from the "last" command? Or could it possible for a user to
> get rid of his login id showing from "last" command"? I mean could it
> possible to modify the "last" command's log?
>
> Thanks for advice.
You'd have to have root and write a C program to do it. The format of
the file is known, so this isn't that farfetched. If an intruder has
root on your machine, I'd imagine this would be one of the things they'd
do to cover it up. There must be root kits out there you can study.
--
DeeDee, don't press that button! DeeDee! NO! Dee...
|
|
|
0
|
|
|
|
Reply
|
 Michael
|
6/18/2006 5:38:22 AM
|
|
Yes, if you knew what you were doing you could modify /var/adm/wtmpx.
Also, you can run commands via ssh without triggering a wtmpx entry.
Example:
ssh <hostname> "command"
|
|
|
0
|
|
|
|
Reply
|
Mark
|
6/20/2006 12:27:31 PM
|
|
|
2 Replies
294 Views
(page loaded in 0.067 seconds)
Similiar Articles: the last login of a user to the database - comp.databases.oracle ...Hi all, i have a database with many users like 4_0, 4_1, 4_2, 4_21, 4_22 and so on. I think - if you update the Front-End software from versio... Problem with 10G Physical Standby Database (archive gap). HELP ...The entries below was the last log before things started to go wrong. Standby Current Log Sequence (DR) : 14383 Primary Current Log Sequence (PROD) : 14383 ... what is the command to list all the login users - comp.unix ...... 0700, >>>> clinton__bill@hotmail.com (bill) said: >> >>> Hi, Is there a command to list who are login? >> >> Groovy, you've already answered it. >> >> What's the last ... which SUNOS log (solaris 8?) has more information? - comp.unix ...Vxworks rlogin - comp.os.vxworks which SUNOS log (solaris 8?) has more information? - comp.unix ... Password: Last login: Mon Feb 13 12:04:49 2006 Sun Microsystems Inc ... Net::SSH::Expect SSHAuthenticationError Login timed out. - comp ...The input stream currently has > > the contents bellow: Last login: Fri Jan =A08 20:20:46 2010 from > > gildb118.flowserve.net > > =A0at /cygdrive/c/Data/perl_mods/lib ... Access 97 and export wizard - administrator can use it, users can ...Access 97 and export wizard - administrator can use it, users can ... the last login of a user to the database - comp.databases.oracle ... Access 97 and export wizard ... Can not login Solaris 10 with root via PuTTY. - comp.unix.solaris ...Password: Last login: Mon Feb 13 12:04:49 2006 Sun Microsystems Inc. SunOS 5.10 s10_69 December 2004 You have new mail. # # ssh root@joe Password: Last login: Mon ... sFTP log file - comp.unix.solarisJoe wrote: > Hi, > > I cannot log the user activity ... so it is logged as ssh would be - i.e. type last and you get logins. I've not seen anything more clever to log sftp ... lastlog in /var/adm - comp.unix.solarisI think your better off using the 'last' command as it displays data in a more readable format. Examples include: # man last # last # last shutdown # last login # last ... X Forwarding requirements - comp.unix.solaris: Last login: Fri Jul 21 22:14:37 from 192.168.1.101 Sun Microsystems Inc. SunOS 5.10 Generic January 2005 % setenv DISPLAY 192.168.1.101:0 % xclock 2 If I use ssh ... Log in – Last.fmWatch out for Phishing Sites! Always check the address bar when logging in to Last.fm. Don't trust other sites with your password! More info… Lastlog - Wikipedia, the free encyclopedialastlog is a command available in most flavors of UNIX based operating systems. It is similar in functionality to the unix command last. However, last parses a ... 7/29/2012 2:31:45 AM
|
|
|
|
|
|
|
|
|
Search |
Post Question |
Groups |
Stream |
About |
Register
78 followers. 