Activity Tracing - Using sendmail. Post: 302423786

Sponsored Content

Top Forums UNIX for Dummies Questions & Answers Activity Tracing - Using sendmail. Post 302423786 by abvh on Saturday 22nd of May 2010 10:50:24 AM

05-22-2010

Registered User

Perfect thanks! I was able to last -f that file and get what I was looking for. Now I have run into another road block with SunOS 5.8.

The wtmp file on the Linux server showed that a connection was made from another server at the time/date I was interested in.

So now I am tasked with figuring out the same thing on a SunOS box as I trace backwards in this mess.

The SunOS box doesn't have any wtmp files in /var/log , but it does have some large wtmpx and utmpx files in /var/adm

I cannot figure out how to view these files properly. There is no 'last' command on SunOS 5.8 (at least not this installation anyways). who -a doesn't give me any useful information.

I copied the wtmpx and utmpx files to a linux box and tried running 'last -f' on them, but the formatting is all screwed up. So I tried other tools like 'rawtmp' and 'dump-utmp' but they still do not look correct.

Is there any way I can dump or view wtmpx & utmpx on the SunOS box properly so that I can see who logged on and when?

There is a dumpadm tool, but I have no idea how to get it to work.

abvh

View Public Profile for abvh

Find all posts by abvh

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Tracing a terminal

Hi you all, any of you know how to monitor what is going on in another terminal? I mean if somebody will install an application on my server remotely and I want to "watch" what he is doing. I remember that some one use the "audit" command but now I just can't remember. thanx.:mad:

2. HP-UX

tracing a user's session

hi, does anyone knows how to trace a user session on a unix system: i want to log these things 1- login 2- date of starting session 3- date of closing session i've tryed who and last but they don't give closing time of session regards hmaiida

3. Shell Programming and Scripting

tracing ethereal traces

Hi All........ i need a perl script that can trace the traces of the ethereal tool. PLZ help me out...............!!!!!!!!!

4. Linux

tracing

hello every one can any one help me out i just want to trace what ever i am doing in linux 8.0 in the text mode to be saved in a text file so that at the end i can see my work what i have do. its just like oracle spool so you can see your work at the end . for example what ever command u gave...

5. Shell Programming and Scripting

tracing in linux

6. Programming

Tracing self process using ptrace()

Kindly correct me if any of the foll is wrong: I want to trace the current process from the C program itself which I think can be done using ptrace(PTRACE_ATTACH,getpid(),0,0); I would like to get control back after a segmentation fault, or arithmetric exception (i.e. all signals that end...

7. UNIX for Advanced & Expert Users

tracing a user input

Hi, i need to get a log of all the commands typed and output of those commands fired by a specific user on my sun machine. Also i need to trace all commands and inputs given from a specific IP on my machine. Regards Rochit

8. Shell Programming and Scripting

tracing processes in shell

Is there a way to have the output from: strace -p 10101 placed in a text file so we can download it and look it over? Thanks Richard

9. UNIX for Dummies Questions & Answers

Tracing file installation

Hello, my first post here. I have a script to install a program which runs the user through installation interface offering several options. What I want to do is to trace the possible mistakes during the installation and send them to a logfile. I.e if a user interrupts the installation, I would...

10. Solaris

Clarifying sendmail configuration - sendmail-client offline

Hi all, I have read about sendmail running as 2 separate process. 1 as a MSP, and the other as the real daemon or MTA. In my current configuration, the sendmail-client is disabled. Both submit.cf and sendmail.cf are left as default untouch I do not specified any mailhost...

LEARN ABOUT MOJAVE

utmpx

UTMPX(5)						      BSD File Formats Manual							  UTMPX(5)

NAME

     utmpx -- user accounting database

SYNOPSIS

     #include <utmpx.h>

DESCRIPTION

     In contrast to utmp and wtmp, the extended databases in utmpx and wtmpx reserve more space for logging hostnames, and also information on a
     process' ID, termination signal and exit status.

     The <utmpx.h> header defines the structures and functions for logging user.  Currently logged in users are tracked in /var/run/utmpx.  The
     interface to the utmpx file is described in endutxent(3).	The file is not automatically created if they do not exist; it must be created
     manually.

     Traditionally, separate files would be used to store the running log of the logins and logouts (wtmpx), and the last login of each user
     (lastlogx).  With the availability of the Apple system log facility asl(3), these separate files can be replace with log entries, which are
     automatically generated when utmpx entries are written.  The API to access the logins and logouts is described in endutxent_wtmp(3) while the
     last login info is accessible with getlastlogx(3).

     For compatibility, changes to utmpx are reflected in utmp(3) (in the utmp, wtmp and lastlog files), but not the other way around.

FILES

     /var/run/utmpx  The utmpx file.

SEE ALSO

     asl(3), endutxent(3), endutxent_wtmp(3), getlastlogx(3), utmp(5)

BSD
								 January 31, 2007							       BSD