Solved

Is there a way to disable lastlog ?

Posted on 2010-09-13
2
1,156 Views
Last Modified: 2013-11-17
Hello !

We have a p570 system running AIX 5.3 and a telnet app. T
his system has an average off 2.000 users and 30.000 daily logins.
From time to time /etc/security/lastlog gets corrupted, and as result the login takes much longer than usual, sometimes several minutes.
I understand keeping track of all this users on a text file like lastlog is not an easy task for AIX. On the other hand, this system runs on a private network, and we have all login info in the app logs - so we don't really need AIX lastlog (we don't care about login attempts, too).

Is there a way to disable lastlog ? My guess is there isn't, as this would compromise AIX security - but I may be wrong. My other question would be: Is there a work around, like a login program replacement I could use to avoid this problem ? Any other suggestion ?

Thanks in advance,

Ronald
0
Comment
Question by:rsekkel
2 Comments
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 250 total points
ID: 33666691
Hi,

there is an unofficial and (of course undocumented) way - just remove or rename /etc/security/lastlog.
AIX will no longer write lastlog records.

But as I said - it's unofficial. Although I'm not aware of any issues resulting from the above - use at your own risk!

wmp


0
 

Author Comment

by:rsekkel
ID: 33691651
Hello Wmp,

After 3 days and more than 60.000 logins I'm quite happy with your amazingly simple solution !

Thank you very much.

Ronald
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
what is the meaning of filesystem loop detected? 7 1,156
how to check for shares on HP-UX 1 64
Unix Script: Loop over all days of a month 17 106
Linux "time" command output redirection 16 185
Attention: This article will no longer be maintained. If you have any questions, please feel free to mail me. jgh@FreeBSD.org Please see http://www.freebsd.org/doc/en_US.ISO8859-1/articles/freebsd-update-server/ for the updated article. It is avail…
A metadevice consists of one or more devices (slices). It can be expanded by adding slices. Then, it can be grown to fill a larger space while the file system is in use. However, not all UNIX file systems (UFS) can be expanded this way. The conca…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question