LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Other *NIX Forums > Solaris / OpenSolaris
User Name
Password
Solaris / OpenSolaris This forum is for the discussion of Solaris and OpenSolaris.
General Sun, SunOS and Sparc related questions also go here.

Notices

Reply
 
Search this Thread
Old 03-06-2011, 09:15 PM   #1
asheshrocky
LQ Newbie
 
Registered: Mar 2011
Posts: 2

Rep: Reputation: 0
Solaris access Log


Hi Guys,

I am new to this forum and Solaris too,its my first post....I need to work with solaris 9 server being used to host some application in our firm.

For the security purpose i was asked to prepare a log file that can show all detail about the users who loged in and logout of the system wither from console/ftp/telnet/ssh or wht soever intrusion.Can anyone tell me where can i get all this information.

Dose solaris maintain any log file to capture all this information.I am planning to create a cronjob to copy a log file out of this environment everyday and delete logfiles in solaris server so that it dosent get filled up so frequent.

Pls help me regarding this.Thanx in advance
 
Old 03-07-2011, 01:51 PM   #2
PrinceCruise
Member
 
Registered: Aug 2009
Location: /Universe/Earth/India/Pune
Distribution: Slackware64 14.1/Current, CentOS 6.5/7.0
Posts: 774

Rep: Reputation: Disabled
Welcome to LQ,

In Solaris, you have /var/adm/sulog.
The command /usr/bin/last shows the list of every user who logged in/out and still logged in.
 
Old 03-07-2011, 06:45 PM   #3
asheshrocky
LQ Newbie
 
Registered: Mar 2011
Posts: 2

Original Poster
Rep: Reputation: 0
Hi Buddy...Thanx for ur help....but i read smevr that /var/adm/sulog records a log whenever a user try to switch over as root..and it dosent record the user login/logout attempts......do u have any idea abt the wtmp logs?

May i know the location i can look for wtmp logs?
 
Old 03-08-2011, 07:22 AM   #4
PrinceCruise
Member
 
Registered: Aug 2009
Location: /Universe/Earth/India/Pune
Distribution: Slackware64 14.1/Current, CentOS 6.5/7.0
Posts: 774

Rep: Reputation: Disabled
The command I mentioned- /usr/bin/last, in my best opinion fetches the info from /var/adm/wtmpx file.
 
Old 03-08-2011, 11:28 AM   #5
jlliagre
Moderator
 
Registered: Feb 2004
Location: Outside Paris
Distribution: Solaris10, Solaris 11, Mint, OL
Posts: 9,507

Rep: Reputation: 360Reputation: 360Reputation: 360Reputation: 360
You are correct. wtmp is deprecated.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
In Apache server, How to change log file location and log format for access log fil? since1993 Linux - Server 1 08-19-2009 04:14 PM
Can SQUID log skype calls,voip,chat programs in access.log revinking Linux - Newbie 6 07-27-2008 01:14 PM
Strange results in /var/log/apache/access.log subt13 Linux - Security 2 08-03-2004 01:21 PM
im on a solaris box and i want to see access log? ForumKid Solaris / OpenSolaris 4 11-05-2002 12:12 PM


All times are GMT -5. The time now is 11:27 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration