Red HatThis forum is for the discussion of Red Hat Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
It may be a simple question I know, but I am working through a terminal on AS 2.1. I have always worked on "desktop" linux systems and don't have a /home directory. Where are user's .bash_history files stored on this server?
They are stored inside the user's home directory. For example the superuser root's bash_history file could be found at the location /root/.bash_history.
Please note the file .bash_history is a hidden file. You will need to provide the "a" argument to ls in order to view files starting with a period "."
Quote:
#ls -al
Or if you are trying to view it through a graphical file manager you will need to enable something like "Show hidden files and directories" from it's menu.
thanks. Basically, my account has been compromised and malicious commands executed on the server. It doesn't look like the history file gives any kind of detailed information I need though, and other log files were deleted. So I guess I'm going to have to live with the fact that management thinks I screwed up, then tried to cover it up.
Thanks, I'll definitely look through that. Yes, files in /var/log, several that I didn't know existed or would know to delete. I am a web programmer so I know about web server security from a programming standpoint, but only dabble in Linux server administration. The problem is, my access has been yanked down to nothing, so I can't run half of those commands. They basically told me if I want anything on the server now, I have to hand it to an admin and he'll put it on for me. The server is fairly insecure in my opinion though (I just signed on), so I'm sure that I will be able to investigate some of this with my read access to virtually every file on the server.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.