straznp
asked on
restarting Lastlog and wtmp
I have somehow corrupted my last login information so I can't find out who has been logging in and who is currently online. How do I restart those logs so that they won't be corrupted anymore?
ASKER
I've tried that already, no luck. So here is a detailed list of things that I have done.
Deleted /var/log/lastlog and /var/log/wtmp altogether. Touched them again and started syslog. No luck. Removed /var/run/utmp and the other and restarted, still no luck. Created a cron job to remove them and restart, still no luck. I'm just not sure how these are still corrupted after I restart them. I'm starting to think it would be a good time to start some source code analysis.
Deleted /var/log/lastlog and /var/log/wtmp altogether. Touched them again and started syslog. No luck. Removed /var/run/utmp and the other and restarted, still no luck. Created a cron job to remove them and restart, still no luck. I'm just not sure how these are still corrupted after I restart them. I'm starting to think it would be a good time to start some source code analysis.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Before changing your rc.inet2 and compiling your kernel try this:
'echo > /var/run/utmp'
(or where ever your utmp is located)
and do:
'echo > /var/log/wtmp'
the tables are then reset.
'echo > /var/run/utmp'
(or where ever your utmp is located)
and do:
'echo > /var/log/wtmp'
the tables are then reset.
jetx