Solved

What is the "/root/install.log.syslog" in linux?

Posted on 2007-04-04
4
1,361 Views
Last Modified: 2013-12-16
A user recently  brought my attention to the file "/root/install.log.syslog" in one of the linux boxes that I have partial responsibility.  This file contains the creation of numerous users and groups such as rpm, mailnull, apache, webalizer, and ntp to name a few.  My question is this:  Should I be worried about all of these users that seem to have been installed on the system during its initial configuration over a year ago?
0
Comment
Question by:accessint
  • 2
4 Comments
 
LVL 3

Accepted Solution

by:
sheetbird earned 125 total points
ID: 18852218
You shouldn't be too concerned. However check your /etc/passwd and /etc/shadow to make sure that these users can't login.  In /etc/passwd they should have a shell of /bin/false (or some other bogus shell) and /etc/shadow should have an * where the encrypted password should be.
0
 

Author Comment

by:accessint
ID: 18853357
Some of the users have two exclimation points instead of an asterisk.  Do you know what that means?
0
 
LVL 3

Expert Comment

by:sheetbird
ID: 18853427
I had never seen that before however I'm sure that depending on the distribution it could be different.  Really it just needs to be something that will never be resolved by crypt, but * or x or !! are used to make it easily identifiable by humans.
0
 
LVL 48

Expert Comment

by:Tintin
ID: 18854307
install.log.syslog is a standard install log (on Redhat at least).  It will contain a list of all the users and packages that were added to the system as part of the install process.

There's nothing scary or unusual about it.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Xymon customize http timeout 2 64
Access_log 17 98
What language/protocol is the Angular Chat? 2 55
linux installs 6 48
In this tutorial I will explain how to make squid prevent malwares in five easy steps: Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-…
I am a long time windows user and for me it is normal to have spaces in directory and file names. Changing to Linux I found myself frustrated when I moved my windows data over to my new Linux computer. The problem occurs when at the command line.…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now