https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494151#M215539 This sounds suspiciously like someone has created (or changed) a cron job to periodically delete it, and possibly other things. Have any disgruntled employees recently left your company?<BR />Also check for suspicious at jobs that re-spawn themselves.<BR />Also check sulog and syslog, as someone may have the password and just not know what they're doing.<BR />It would probably be an idea to change the password if you haven't already. Tue, 01 Mar 2005 04:41:37 GMT Gordon Morrison 2005-03-01T04:41:37Z https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494146#M215534 gurus,<BR /><BR />why /lib that link to /usr/lib losed itself??<BR />how can root access only by sysadmin??? Mon, 28 Feb 2005 06:16:02 GMT https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494146#M215534 piyut_1 2005-02-28T06:16:02Z https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494147#M215535 root access is only by sysadmin because only a systems administrator should be messing around with some things that root has access.<BR /><BR />sysadmin=root user<BR />root user should be sysadmin.<BR /><BR />Wondering if you recently upgraded from HP-UX 9 to 10 or above or something.<BR /><BR />If that link is gone it was either erased or it was damaged by some kind of hardware failure.<BR /><BR />IT may not be time to check hardware and restore this system to a known, working backup, at least vg00.<BR /><BR />SEP Mon, 28 Feb 2005 06:27:40 GMT https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494147#M215535 Steven E. Protter 2005-02-28T06:27:40Z https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494148#M215536 can common user access as root with .rhosts or other configurations file???<BR />i just disable rlogin in my server hp-ux B 11.11.<BR />what use of /lib ???? Mon, 28 Feb 2005 07:14:10 GMT https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494148#M215536 piyut_1 2005-02-28T07:14:10Z https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494149#M215537 /lib should be a symbolic link to /usr/lib<BR />If the link is not there, re-create it like this:<BR />ln -s /usr/lib /lib<BR /><BR />I believe the link exists for backward-compatibility: lib used to be /lib, but then they decided to move it to /usr/lib and they created the link to that old software would still be able to find it.<BR /><BR />I think it is possible for a non-root user to rlogin as root without a password if root's .rhosts is set up to allow it. If it is, I would change it immediately. The use of .rhosts is very convenient, but very insecure. Mon, 28 Feb 2005 10:24:50 GMT https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494149#M215537 Gordon Morrison 2005-02-28T10:24:50Z https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494150#M215538 gurus,<BR /><BR />i don't find .rhosts that enable non-root user to login as root.in /etc/sudoers only one non-root user that can sudo as root without password, he is me.now,/lib is gone again.how come??? Mon, 28 Feb 2005 20:19:31 GMT https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494150#M215538 piyut_1 2005-02-28T20:19:31Z https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494151#M215539 This sounds suspiciously like someone has created (or changed) a cron job to periodically delete it, and possibly other things. Have any disgruntled employees recently left your company?<BR />Also check for suspicious at jobs that re-spawn themselves.<BR />Also check sulog and syslog, as someone may have the password and just not know what they're doing.<BR />It would probably be an idea to change the password if you haven't already. Tue, 01 Mar 2005 04:41:37 GMT https://community.hpe.com/t5/operating-system-hp-ux/lib-losed/m-p/3494151#M215539 Gordon Morrison 2005-03-01T04:41:37Z