https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592006#M33018 You could either extend the login period from 30 days to 90 days, or you could possibly "flag" the account as active. Is this a trusted system? Tue, 09 Oct 2001 19:05:59 GMT harry d brown jr 2001-10-09T19:05:59Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592005#M33017 I am using HP-UX 10.20 on an HP 9000 K460. My problem is I have approximately 1400 FTP/Telnet users on my system. The users use WS-FTP to download/upload files. Also, I have my security properties set to disable any accounts not used with 30 days. My problem is that most of my users only FTP into the system and the system does not recognize the FTP session as a login in session. Due to the design of the system and other issues it has to be done this way. Any suggestion, if any, on how to get the system to recognize FTP as a login session. Thanks... Tue, 09 Oct 2001 19:02:13 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592005#M33017 Michael Joseph 2001-10-09T19:02:13Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592006#M33018 You could either extend the login period from 30 days to 90 days, or you could possibly "flag" the account as active. Is this a trusted system? Tue, 09 Oct 2001 19:05:59 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592006#M33018 harry d brown jr 2001-10-09T19:05:59Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592007#M33019 ftp sessions are logged in wtmp, so you could write a script that parses the output from the 'last' command and see the last time the user ftpped into the system, i.e.:<BR /><BR />last -R -1 <USER><BR /><BR />will tell you when the user last accessed the system.<BR /><BR />-Santosh</USER> Tue, 09 Oct 2001 19:09:14 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592007#M33019 Santosh Nair_1 2001-10-09T19:09:14Z https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592008#M33020 You need do it manually with some scripting as the accounts are accessed only through ftp.<BR /><BR />1) Keep only 30 days of wtmp file. You can use<BR />/usr/sbin/acct/fwtmp to resize files.<BR /><BR />cat var/adm/wtmp | /usr/sbin/acct/fwtmp &gt; /tmp/fwtmp.ascii<BR /><BR />Use sed to delete the lines that are older than 30days. This is where you need to spend sometime in building a script.<BR /><BR />convert it back to wtmp.<BR /><BR />cat /tmp/fwtmp.ascii |/usr/sbin/acct/fwtmp -ic &gt; /var/adm/wtmp<BR /><BR />This way you can maintain wtmp files for 30days.<BR /><BR />2. Once this is in place, your job is relatively easy. Get all the user_ids except for the standard and other required ones into a file <BR /><BR />egrep -v '^root|^sys|^bin' /etc/passwd|awk '{print $1}' &gt; userlist #(include other user ids that need to be there in -v args)<BR /><BR />last -R &gt; /tmp/last.detail (this has only 30days of data)<BR />for user in `cat userlist`<BR />grep "^$user" /tmp/last.detail &gt;/dev/null 2&gt;&amp;1<BR />if [$?! = 0 ] #(this userdidn't ftp for the last 30days)<BR />then<BR />passwd -l $user #Lock this account<BR />echo "$user locked due to inactivity" &gt;&gt; /tmp/lock.detail<BR />fi<BR /><BR />Now do step 1 to trim the wtmp file for next day.<BR /><BR />This gives you only an idea. You can develop a working script based on it.<BR /><BR />-Sri<BR /><BR /><BR /> Wed, 10 Oct 2001 03:12:08 GMT https://community.hpe.com/t5/operating-system-hp-ux/ftp-login-session/m-p/2592008#M33020 Sridhar Bhaskarla 2001-10-10T03:12:08Z