Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

It appears that /var/log/lastlog is missing.

Discussion in 'General Discussion' started by kistler, Jul 18, 2006.

  1. kistler

    kistler Well-Known Member

    Joined:
    Jan 27, 2005
    Messages:
    136
    Likes Received:
    0
    Trophy Points:
    166
    Would a hacker remove lastlog, I have been checking things and it seems ok I have ran a few scans and nothing has shown up. I am unsure why this would be removed on its own, I didn’t notice anything in the log watch report and I didn’t see any type of hacking attempt but I am just amazed that this file would up and walk away.

    Any ideas, thx
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,460
    Likes Received:
    22
    Trophy Points:
    463
    Location:
    Go on, have a guess
    It does happen. You would have had to have a root compromise if a hacker disposed of it, but I would suspect logrotate beforehand. You can get it logging again simply with:

    touch /var/log/lastlog
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice