Online Expert Day - HPE Data Storage - Live Now
April 24/25 - Online Expert Day - HPE Data Storage - Live Now
Read more
System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

How to stop display of Login detail HP-UX 11.31

Mr.Right
Advisor

How to stop display of Login detail HP-UX 11.31

HI All

All of our systems are trusted. Any time I telnet and log in as a non-root user, I see that information displayed. It comes up immediately after the password.

login: wallekp
Password:
Last successful login for wallekp: Mon Aug 30 09:57:35 CST6CDT 2004 on pts/ta
Last unsuccessful login for wallekp: Mon Aug 30 09:57:29 CST6CDT 2004 on pts/ta

Is there any way I can stop displaying this information on user login.
7 REPLIES
rariasn
Honored Contributor

Re: How to stop display of Login detail HP-UX 11.31

Hi,

Modify /etc/syslog.conf to add next entry:

auth.info /var/adm/syslog/auth.log

Modify entry:

*.info;mail.none /var/adm/syslog/syslog.log

to:

mail.none /var/adm/syslog/syslog.log

Restart "syslogd" daemon:

# kill -HUP `cat /var/run/syslog.pid`

More information:

# man syslogd
# man 3c syslog

rgs,




Jeeshan
Honored Contributor

Re: How to stop display of Login detail HP-UX 11.31

check this doc

http://www.docs.hp.com/en/B2355-60130/security.4.html
a warrior never quits
Rita C Workman
Honored Contributor

Re: How to stop display of Login detail HP-UX 11.31

hmmmm....based on your example I think Patrick Wallek might say:

Follow the advice of 'unix shell' and change the following to:

DISPLAY_LAST_LOGIN=0


Kindest regards,
Rita


...and don't forget Patrick's Etiquette document, and assign points accordingly.
Steven Schweda
Honored Contributor

Re: How to stop display of Login detail HP-UX 11.31

> Is there any way I can stop displaying this
> information on user login.

Why would you want to do that? It seems to
me to be a pretty harmless security aid.
rmueller58
Valued Contributor

Re: How to stop display of Login detail HP-UX 11.31

go to SSH and shut off telnet.

We have disabled telnet,ftp,rlogin on all our Un*x servers.. All network connections should be secured and encrypted.

the reason to disable is that username and passwd is sent in "clear text" and is easily captured using TCPDUMP or Wireshark.
Unless your "network" is firewalled, and all individuals within the network or devices connected to the network would never have malicious intent or you have full absolute control i'd recommend moving from the unsecure connections.

Steven Schweda
Honored Contributor

Re: How to stop display of Login detail HP-UX 11.31

> go to SSH and shut off telnet.

This may be a good idea, but I fail to see
how it would suppress the undesired messages.
Around here, for example:

alp $ ssh dyi
Authentication successful.

Last successful login: Tue Dec 15 21:24:07 CST 2009 alp-l.antinode.info
Last authentication failure: Tue Dec 15 21:24:30 CST 2009 dyi.antinode.info
Last login: Tue Dec 15 21:24:07 2009 from alp-l.antinode.info
[...]
dyi $ uname -a
HP-UX dyi B.11.31 U ia64 4235313755 unlimited-user license

Of course, I still don't see why suppressing
the messages is a good idea, but that _was_
the original request.
Bill Hassell
Honored Contributor

Re: How to stop display of Login detail HP-UX 11.31

> DISPLAY_LAST_LOGIN=0

This is added to the /etc/default/security file. However, it does nothing for any version of HP-UX prior to 11.31. Apparently this feature was added for 11i ver3.


Bill Hassell, sysadmin