What the heck is THIS ??
 

.
.
OK - so I was reading some of the posts on Nix Security, and came across a post titled "Damn Script Kiddies".

So, just for the heck of it, I checked my /var/log/messages, and ran into this:

Oct 22 18:08:57 build-master syslogd 1.4.1#10: restart.
Oct 22 18:09:04 build-master exiting on signal 15

Now, if I'm not on acid, this says to build a master log, restart and exit on Oct. 22 - but it's only the 13th today as I'm posting this.

And, this box didn't exist last year......

Am I being set up ??

I'm running Xandros, no server setup, no fancy stuff, just vanilla Xandros 1.0 on a Pentium 866 box.

Sup wit dis ??

(Oops - Hi everyone, I'm the new kid on the block...)

what does the 'date' command tell you?

FWIW, syslog normally has to stop and restart itself regularly for log rotation.

.
.
Wed.Oct 13 14:15:20 EDT 2004

But, why would my system log an action/date that hadn't come to pass yet ??
.
.
PM

Interesting question. Are you sure the date wasn't changed by an accident? Also, browse /var/log/messages and see when the anomaly starts and ends (are there only messages from Oct 22 or also from other dates in future).

.
.
Those two lines are it - there's nothing else, which seems odd, because this system's
been up about 10 Mos, so if it regularly starts and stops, wouldn't I have at least a slightly larger log ??

(Unless Xandros does something different than my Red Hat and Mandrake boxen)
(I've got about a half dozen of them running in the house... )

PM
.
.

BTW: Thanks for the help. guyz.... :)

- what does your syslog.conf look like? Maybe you're not logging much.
- what does your logrotate.d look like for syslog? If it rotates old logs try to check them for info.