01-03-2003
6 More Discussions You Might Find Interesting
1. Solaris
Hi All,
I need to get last 7 days log entries from sulog. The same has to be done for the last command.
for ex: when i search for a user "abc" in sulog, i only want to check his entries for the last 1 week.
The same has to be done for last command.
Can anyone suggest some tips.
... (0 Replies)
Discussion started by: navdeepan
0 Replies
2. Linux
How to enable sulog activity in LINUX like /var/adm/sulog in Solaris , AIX.....
I have added
SULOG_FILE /var/log/sulog
in /etc/login.defs ...but it is not working ...
Thanks a lot for help (1 Reply)
Discussion started by: Anu_1
1 Replies
3. AIX
I just wrote a very small script that improves readability on system sulog. The problem with all sulog is there is lack of clarity whether the info you are looking at is the most current. So if you just need a simple soution instead of going thru the trouble of writing a script that rotate logs and... (0 Replies)
Discussion started by: sparcguy
0 Replies
4. Solaris
Hi,
more than one user login the our solaris 10 systems with same user account by using ssh connection. i wanna see ip or hostname information of them on sulog instead of it's terminal number. is this possible?
current sulog is like that
SU 02/06 08:59 + pts/1 operation-vuser
SU 02/07 14:27... (1 Reply)
Discussion started by: sdkbjk
1 Replies
5. Solaris
Hi,
I would like to know is there any way to capture the year in /var/adm/sulog file in solaris 10?
Please suggest (2 Replies)
Discussion started by: manoj.solaris
2 Replies
6. AIX
Hi,
I need to grant read permission to a normal user on sulog file on AIX 6.1.
As root I did acledit sulog and aclget shows "extended permissions" as "enabled" and normal user "splunk" has read permissions. When I try to access sulog as splunk user it won't allow and aclget for splunk user... (6 Replies)
Discussion started by: prvnrk
6 Replies
sulog(4) File Formats sulog(4)
NAME
sulog - su command log file
SYNOPSIS
/var/adm/sulog
DESCRIPTION
The sulog file is a record of all attempts by users on the system to execute the su(1M) command. Each time su(1M) is executed, an entry
is added to the sulog file.
Each entry in the sulog file is a single line of the form:
SU date time
result port user-newuser
where
date The month and date su(1M) was executed. date is displayed in the form mm/dd where mm is the month number and dd is the
day number in the month.
time The time su(1M) was executed. time is displayed in the form HH/MM where HH is the hour number (24 hour system) and MM
is the minute number.
result The result of the su(1M) command. A ` + ' sign is displayed in this field if the su attempt was successful; otherwise a
` - ' sign is displayed.
port The name of the terminal device from which su(1M) was executed.
user The user id of the user executing the su(1M) command.
newuser The user id being switched to with su(1M).
EXAMPLES
Example 1: A sample sulog file.
Here is a sample sulog file:
SU 02/25 09:29 + console root-sys
SU 02/25 09:32 + pts/3 user1-root
SU 03/02 08:03 + pts/5 user1-root
SU 03/03 08:19 + pts/5 user1-root
SU 03/09 14:24 - pts/5 guest3-root
SU 03/09 14:24 - pts/5 guest3-root
SU 03/14 08:31 + pts/4 user1-root
FILES
/var/adm/sulog su log file
/etc/default/su contains the default location of sulog
SEE ALSO
su(1M)
SunOS 5.10 6 Jun 1994 sulog(4)