Checking auth.log, I see this a lot:
Code:
Mar 23 06:37:13 diwars CRON[1112]: pam_unix(cron:session): session closed for user root
Mar 23 06:39:01 diwars CRON[1521]: pam_unix(cron:session): session opened for user root by (uid=0)
Mar 23 06:39:01 diwars CRON[1521]: pam_unix(cron:session): session closed for user root
Mar 23 07:09:01 diwars CRON[1528]: pam_unix(cron:session): session opened for user root by (uid=0)
Mar 23 07:09:01 diwars CRON[1528]: pam_unix(cron:session): session closed for user root
Mar 23 07:17:01 diwars CRON[1536]: pam_unix(cron:session): session opened for user root by (uid=0)
Mar 23 07:17:01 diwars CRON[1536]: pam_unix(cron:session): session closed for user root
Mar 23 07:27:42 diwars sshd[1539]: pam_unix(sshd:session): session opened for user shimdidly by (uid=0)
Mar 23 07:31:47 diwars sshd[1539]: pam_unix(sshd:session): session closed for user shimdidly
Mar 23 07:39:01 diwars CRON[1671]: pam_unix(cron:session): session opened for user root by (uid=0)
Mar 23 07:39:01 diwars CRON[1671]: pam_unix(cron:session): session closed for user root
Mar 23 08:09:01 diwars CRON[1681]: pam_unix(cron:session): session opened for user root by (uid=0)
Mar 23 08:09:01 diwars CRON[1681]: pam_unix(cron:session): session closed for user root
What does this mean? Is it normal/necessary behavior?