Solved

Is there a way to disable lastlog ?

Posted on 2010-09-13
2
1,136 Views
Last Modified: 2013-11-17
Hello !

We have a p570 system running AIX 5.3 and a telnet app. T
his system has an average off 2.000 users and 30.000 daily logins.
From time to time /etc/security/lastlog gets corrupted, and as result the login takes much longer than usual, sometimes several minutes.
I understand keeping track of all this users on a text file like lastlog is not an easy task for AIX. On the other hand, this system runs on a private network, and we have all login info in the app logs - so we don't really need AIX lastlog (we don't care about login attempts, too).

Is there a way to disable lastlog ? My guess is there isn't, as this would compromise AIX security - but I may be wrong. My other question would be: Is there a work around, like a login program replacement I could use to avoid this problem ? Any other suggestion ?

Thanks in advance,

Ronald
0
Comment
Question by:rsekkel
2 Comments
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 250 total points
ID: 33666691
Hi,

there is an unofficial and (of course undocumented) way - just remove or rename /etc/security/lastlog.
AIX will no longer write lastlog records.

But as I said - it's unofficial. Although I'm not aware of any issues resulting from the above - use at your own risk!

wmp


0
 

Author Comment

by:rsekkel
ID: 33691651
Hello Wmp,

After 3 days and more than 60.000 logins I'm quite happy with your amazingly simple solution !

Thank you very much.

Ronald
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

I have been running these systems for a few years now and I am just very happy with them.   I just wanted to share the manual that I have created for upgrades and other things.  Oooh yes! FreeBSD makes me happy (as a server), no maintenance and I al…
I promised to write further about my project, and here I am.  First, I needed to setup the Primary Server.  You can read how in this article: Setup FreeBSD Server with full HDD encryption (http://www.experts-exchange.com/OS/Unix/BSD/FreeBSD/A_3660-S…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now