Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: tracking root users
Top Forums UNIX for Dummies Questions & Answers tracking root users Post 302281110 by funksen on Wednesday 28th of January 2009 08:18:37 AM
Old 01-28-2009
"last" for login date + IP

also try who -a

"history" also works on solaris, or see the file .sh_history in users home directory (or .bash_history)
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Tracking activities of Users using a particular login.

Hi!! Experts, I have a typical scenario here in which several users have access to a particular login .. say "build". None of the users know the passwd for this login. The name of some of the user have been to .rhosts file. The users can connect only by doing a rlogin to this id and then... (4 Replies)
Discussion started by: jyotipg
4 Replies

2. SCO

Non-Root Users Unable to Print

UnixWare 7, Release 7.1.3 We have a customer that has frequent issues with Non-Root users being unable to print. They are able to print w/o issues, but all of the sudden it stops working. The only workaround we have at this point is to reboot the server. It is happening weekly according to... (1 Reply)
Discussion started by: cfshd
1 Replies

3. Solaris

EUID set for all non-root users

We have a Solaris box. I noticed that whenever any non-root user logins into the box and issues the command id the output is (for example) uid=42568(sam) gid=1245(sam) euid=0(root) egid=2(bin). I have not given any privileges to anyone explicitly. When I issued ls -l in the /usr/bin directory I... (1 Reply)
Discussion started by: chrisanto_2000
1 Replies

4. Solaris

locking a users file as root

hello, I have a challenge to find a way to lock down a file in a user's home directory, such that a user can NOT modify, rename, move, delete, etc. The solution needs to be deployable without, for example, having to switch from unix to windows, etc We are using NFS. We want to lock the... (1 Reply)
Discussion started by: jvmagic
1 Replies

5. UNIX Desktop Questions & Answers

Too many users with root password

Hi there, I'm working with a Linux server and now I can get a daily Logwatch mail ... my question is:since there are too many users with root password (...in my opinion... :mad:) how could I prevent to delete information about "su" log? Thanks in advance, GB (3 Replies)
Discussion started by: Giordano Bruno
3 Replies

6. AIX

Tracking Root commands

Hi All How can track what commands are entered by the Root user. Is there a log besides using the history command that lists all commands entered for a period of time. thanks:o (6 Replies)
Discussion started by: pashan
6 Replies

7. Solaris

How to restrict rm -rf * to users other than root?

I'm using Solaris 10. I want to restrict users from executing this dangerous command. rm -rf * But they should be able to perform the below actions: rm -rf *.* rm -rf filename rm -rf directory Is it possible? If yes then pls let me know how to do it? (7 Replies)
Discussion started by: Arun_Linux
7 Replies

8. UNIX for Dummies Questions & Answers

Not able to switch to other users using su -user from root

Hi all, I have a small problem. When I log in as root and try to switch to any other user using su -user, then it is giving an error saying libncurses.so permission denied. Can you help me? Thank you in advance. Sai. (1 Reply)
Discussion started by: sai2krishna
1 Replies

9. Shell Programming and Scripting

Find users with root UID or GID or root home

I need to list users in /etc/passwd with root's GID or UID or /root as home directory If we have these entries in /etc/passwd root:x:0:0:root:/root:/bin/bash rootgooduser1:x:100:100::/home/gooduser1:/bin/bash baduser1:x:0:300::/home/baduser1:/bin/bash... (6 Replies)
Discussion started by: anil510
6 Replies

10. Shell Programming and Scripting

Tracking users through history command

Hi folks, I have the basic query that there are 3 unix boxes having their individual access now in my team there are 4 members who are using the same credentials to access those 3 boxes through putty ssh from their windows desktop , now if i want to check which 4 members have executed the... (1 Reply)
Discussion started by: punpun66
1 Replies

LEARN ABOUT MOJAVE

login

LOGIN(1)						    BSD General Commands Manual 						  LOGIN(1)

NAME

     login -- log into the computer

SYNOPSIS

     login [-pq] [-h hostname] [user]
     login -f [-lpq] [-h hostname] [user [prog [args...]]]

DESCRIPTION

     The login utility logs users (and pseudo-users) into the computer system.

     If no user is specified, or if a user is specified and authentication of the user fails, login prompts for a user name.  Authentication of
     users is configurable via pam(8).	Password authentication is the default.

     The following options are available:

     -f      When a user name is specified, this option indicates that proper authentication has already been done and that no password need be
	     requested.  This option may only be used by the super-user or when an already logged in user is logging in as themselves.

	     With the -f option, an alternate program (and any arguments) may be run instead of the user's default shell.  The program and argu-
	     ments follows the user name.

     -h      Specify the host from which the connection was received.  It is used by various daemons such as telnetd(8).  This option may only be
	     used by the super-user.

     -l      Tells the program executed by login that this is not a login session (by convention, a login session is signalled to the program with
	     a hyphen as the first character of argv[0]; this option disables that), and prevents it from chdir(2)ing to the user's home direc-
	     tory.  The default is to add the hyphen (this is a login session).

     -p      By default, login discards any previous environment.  The -p option disables this behavior.

     -q      This forces quiet logins, as if a .hushlogin is present.

     If the file /etc/nologin exists, login dislays its contents to the user and exits.  This is used by shutdown(8) to prevent users from logging
     in when the system is about to go down.

     Immediately after logging a user in, login displays the system copyright notice, the date and time the user last logged in, the message of
     the day as well as other information.  If the file .hushlogin exists in the user's home directory, all of these messages are suppressed.  -q
     is specified, all of these messages are suppressed.  This is to simplify logins for non-human users, such as uucp(1).  login then records an
     entry in utmpx(5) and the like, and executes the user's command interpreter (or the program specified on the command line if -f is speci-
     fied).

     The login utility enters information into the environment (see environ(7)) specifying the user's home directory (HOME), command interpreter
     (SHELL), search path (PATH), terminal type (TERM) and user name (both LOGNAME and USER).

     Some shells may provide a builtin login command which is similar or identical to this utility.  Consult the builtin(1) manual page.

     The login utility will submit an audit record when login succeeds or fails.  Failure to determine the current auditing state will result in
     an error exit from login.

FILES

     /etc/motd		message-of-the-day
     /etc/nologin	disallows logins
     /var/run/utmpx	current logins
     /var/mail/user	system mailboxes
     .hushlogin 	makes login quieter
     /etc/pam.d/login	pam(8) configuration file
     /etc/security/audit_user
			user flags for auditing
     /etc/security/audit_control
			global flags for auditing

SEE ALSO

     builtin(1), chpass(1), newgrp(1), passwd(1), rlogin(1), getpass(3), utmpx(5), environ(7)

HISTORY

     A login utility appeared in Version 6 AT&T UNIX.

BSD
								September 13, 2006							       BSD
All times are GMT -4. The time now is 08:26 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy