How can I doing Security Audit?
Hello.
How can I understand which user tried to logging into my Linux Box when I'm not at the desk? Can I find which username and password his entered? Thank you. |
You can view login messages in syslog (/var/log/syslog or something system dependent).
|
I use Debian and check "syslog" but I can't see anything about username and password that used for enter into the system. Can you show me some special "syntax" or "words" for forward it into "grep" command?
|
Quote:
Code:
lastlog; last -wai; lastb; less /var/log/auth.log Quote:
|
Thank you so much.
It is better than nothing :) |
All times are GMT -5. The time now is 06:05 PM. |