Last mount times

dotkpay · 07-29-2011, 03:19 PM

Hello,
How do I get the details of the last 10 or 5 mount times for my linux system. Which also includes the times it was mounted from a foreign system running in ram like puppy linux or by another OS on the same hard disk.

Thanks in advance

Diantre · 07-29-2011, 11:36 PM

Usually, mount information is logged to /var/log/messages. Linux-based live CD/DVD systems log information to their in-memory log files. When you reboot the computer, this information is gone, unless you save it somewhere.

Other operating systems have their own facilities for logging information, you have to look for that information in the OS you're using to mount your partitions.

dotkpay · 07-30-2011, 12:48 AM

ok thanks but this sounds embarrassing, I just wanted to know if anyone used my pc while I was away, can I get any last boot information from the BIOS or anywhere?

Diantre · 07-30-2011, 01:48 AM

Don't think it's embarrasing, not at all. I've been in that situation many times before. As I mentioned above, check /var/log/messages. Normally the Linux kernel will start logging with something like this:

Code:

Jul 29 17:44:17 darkstar syslogd 1.5.0: restart.
Jul 29 17:44:17 darkstar kernel: klogd 1.5.0, log source = /proc/kmsg started.

By examining the log you'll know if the computer was turned on while you were away. But there are better security measures, most BIOSes can be set up with passwords, and boot managers can also have passwords. Hard disk partitions can be encrypted, which is very useful with laptop computers.

If you use one or more security measures, casual unauthorized users will have a hard time accessing your system and data.