08-03-2009
Unix Security - SU logs
Hi,
Hope its good with everyone.
I have the below su logs and i dont understand the bolded numbers. can someone help me please.
Jul 24 11:55:50 su: - 8 username
Jul 24 12:12:40 su: - 10 username
Jul 26 11:15:32 su: - 7 username
I understand these are failed logins but what does that number (8,10,7) indicate??
Thanks for helping.
-Indra
9 More Discussions You Might Find Interesting
1. UNIX Desktop Questions & Answers
hi
my name es juan
i have sco open server 5.0.4 release
i need clear the log files as wtmp
thanks you very much (1 Reply)
Discussion started by: jtapia
1 Replies
2. HP-UX
Hi All,
Can anybody tell me, how to trace out user access to the Unix Server Machine, (i,e) I want to find out the user who had executed some commands to alter the cron file.
Regards
Nag (3 Replies)
Discussion started by: nag_sundaram
3 Replies
3. UNIX for Dummies Questions & Answers
Hi.
Is there a way or command (other than netstat) in Unix to find out or get a list a users who FTP into a particular server? Like, say last 1000 users. I need to get the user ID (any info), who FTP to a particular server.
netstat gives only the users who have an FTp session currently.
... (2 Replies)
Discussion started by: manisendhil
2 Replies
4. Linux
Hi,
I need to get a hostory of users who FTP into a server. How can I do it in Linux/Unix? Is there a command for this? I do not want to use netstat -a as it gives only the list of users who have a session currently on the server. Can this be done with the "last" command?
Please do let me... (0 Replies)
Discussion started by: manisendhil
0 Replies
5. UNIX for Advanced & Expert Users
Hi,
I'm working in an application and the related Java code and the envrionment is in Unix server. We are generating the log messages using loggers of Java.util.log . But, the logs are not getting generated in the log files.
We feel that the people who developed the system might have done some... (6 Replies)
Discussion started by: kelangovan
6 Replies
6. UNIX for Advanced & Expert Users
Hi !
I have a FTP site, where I softlinked my server log file.
Now I want to view the logs in IE as I do in unix
Some kind of free tool should be there, Can somebody provide me a pointer.
Thanks. (0 Replies)
Discussion started by: dashok.83
0 Replies
7. UNIX for Advanced & Expert Users
Hi.
Is there a way or command (other than netstat) in Unix to find out or get a list a users who FTP into a particular server? Like, say last 1000 users. I need to get the user ID (any info), who FTP to a particular server.
netstat gives only the users who have an FTp session currently.
... (4 Replies)
Discussion started by: manisendhil
4 Replies
8. UNIX for Dummies Questions & Answers
Can any one give a explaination with examples on how to understand file transmission log files in Unix for inbound and outbound traffic. (1 Reply)
Discussion started by: ITDev01
1 Replies
9. UNIX for Dummies Questions & Answers
I'm working on Logs Management System. it requires from all Unix servers to send their logs files to a specific (IP, Port).
Please help me to get the right conf on logs files to send them to that IP and port.
Any suggestions are highly appreciated.
:o:o (0 Replies)
Discussion started by: kinan adra
0 Replies
LEARN ABOUT PLAN9
ftphosts
ftphosts(4) File Formats ftphosts(4)
NAME
ftphosts - FTP Server individual user host access file
SYNOPSIS
/etc/ftpd/ftphosts
DESCRIPTION
The ftphosts file is used to allow or deny access to accounts from specified hosts. The following access capabilities are supported:
allow username addrglob [addrglob...]
Only allow users to login as username from host(s) that match addrglob.
deny username addrglob [addrglob...]
Do not allow users to login as username from host(s) that match addrglob.
A username of * matches all users. A username of anonymous or ftp specifies the anonymous user.
addrglob is a regular expression that is matched against hostnames or IP addresses. addrglob may also be in the form address:netmask or
address/CIDR, or be the name of a file that starts with a slash ('/') and contains additional address globs. An exclamation mark (`!')
placed before the addrglob negates the test.
The first allow or deny entry in the ftphosts file that matches a username and host is used. If no entry exists for a username, then access
is allowed. Otherwise, a matching allow entry is required to permit access.
EXAMPLES
You can use the following ftphosts file to allow anonymous access from any host except those on the class A network 10, with the exception
of 10.0.0.* IP addresses, which are allowed access:
allow ftp 10.0.0.*
deny ftp 10.*.*.*
allow ftp *
10.0.0.* can be written as 10.0.0.0:255.255.255.0 or 10.0.0.0/24.
FILES
/etc/ftpd/ftphosts
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWftpr |
+-----------------------------+-----------------------------+
|Interface Stability |External |
+-----------------------------+-----------------------------+
SEE ALSO
in.ftpd(1M), ftpaccess(4), attributes(5)
SunOS 5.10 1 May 2003 ftphosts(4)