?
Solved

Is there a way to disable lastlog ?

Posted on 2010-09-13
2
Medium Priority
?
1,205 Views
Last Modified: 2013-11-17
Hello !

We have a p570 system running AIX 5.3 and a telnet app. T
his system has an average off 2.000 users and 30.000 daily logins.
From time to time /etc/security/lastlog gets corrupted, and as result the login takes much longer than usual, sometimes several minutes.
I understand keeping track of all this users on a text file like lastlog is not an easy task for AIX. On the other hand, this system runs on a private network, and we have all login info in the app logs - so we don't really need AIX lastlog (we don't care about login attempts, too).

Is there a way to disable lastlog ? My guess is there isn't, as this would compromise AIX security - but I may be wrong. My other question would be: Is there a work around, like a login program replacement I could use to avoid this problem ? Any other suggestion ?

Thanks in advance,

Ronald
0
Comment
Question by:rsekkel
2 Comments
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 1000 total points
ID: 33666691
Hi,

there is an unofficial and (of course undocumented) way - just remove or rename /etc/security/lastlog.
AIX will no longer write lastlog records.

But as I said - it's unofficial. Although I'm not aware of any issues resulting from the above - use at your own risk!

wmp


0
 

Author Comment

by:rsekkel
ID: 33691651
Hello Wmp,

After 3 days and more than 60.000 logins I'm quite happy with your amazingly simple solution !

Thank you very much.

Ronald
0

Featured Post

[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This tech tip describes how to install the Solaris Operating System from a tape backup that was created using the Solaris flash archive utility. I have used this procedure on the Solaris 8 and 9 OS, and it shoudl also work well on the Solaris 10 rel…
I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Suggested Courses

601 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question