?
Solved

Is there a way to disable lastlog ?

Posted on 2010-09-13
2
Medium Priority
?
1,173 Views
Last Modified: 2013-11-17
Hello !

We have a p570 system running AIX 5.3 and a telnet app. T
his system has an average off 2.000 users and 30.000 daily logins.
From time to time /etc/security/lastlog gets corrupted, and as result the login takes much longer than usual, sometimes several minutes.
I understand keeping track of all this users on a text file like lastlog is not an easy task for AIX. On the other hand, this system runs on a private network, and we have all login info in the app logs - so we don't really need AIX lastlog (we don't care about login attempts, too).

Is there a way to disable lastlog ? My guess is there isn't, as this would compromise AIX security - but I may be wrong. My other question would be: Is there a work around, like a login program replacement I could use to avoid this problem ? Any other suggestion ?

Thanks in advance,

Ronald
0
Comment
Question by:rsekkel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 1000 total points
ID: 33666691
Hi,

there is an unofficial and (of course undocumented) way - just remove or rename /etc/security/lastlog.
AIX will no longer write lastlog records.

But as I said - it's unofficial. Although I'm not aware of any issues resulting from the above - use at your own risk!

wmp


0
 

Author Comment

by:rsekkel
ID: 33691651
Hello Wmp,

After 3 days and more than 60.000 logins I'm quite happy with your amazingly simple solution !

Thank you very much.

Ronald
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In tuning file systems on the Solaris Operating System, changing some parameters of a file system usually destroys the data on it. For instance, changing the cache segment block size in the volume of a T3 requires that you delete the existing volu…
Installing FreeBSD… FreeBSD is a darling of an operating system. The stability and usability make it a clear choice for servers and desktops (for the cunning). Savvy?  The Ports collection makes available every popular FOSS application and packag…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.
Suggested Courses
Course of the Month13 days, 11 hours left to enroll

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question