HPE Community
Operating System - HP-UX
1834492 Members
3953 Online
110067 Solutions
New Discussion

How to find out the logins

 
SOLVED
Go to solution
Suni Raj
Advisor

‎10-03-2005 12:13 AM

‎10-03-2005 12:13 AM

How to find out the logins

Hi...

Someone(obviously with preveliged user) restarted the Sybase DB on my HP-UX 11.0 box. How can I find that who has done this or who was logged on to the server at a particular time.

Can anybody help me out in this regard.

Regds
Suni
0 Kudos
Reply
8 REPLIES 8
Muthukumar_5
Honored Contributor

‎10-03-2005 12:14 AM

‎10-03-2005 12:14 AM

Solution

Re: How to find out the logins

last -R

will give it.

hth.
Easy to suggest when don't know about the problem!
Reply
Pete Randall
Outstanding Contributor

‎10-03-2005 12:15 AM

‎10-03-2005 12:15 AM

Re: How to find out the logins

The last command will give you login info.


Pete

Pete
Reply
RAC_1
Honored Contributor

‎10-03-2005 12:15 AM

‎10-03-2005 12:15 AM

Re: How to find out the logins

last -R - successful logins
lastb -R - invalid logins
There is no substitute to HARDWORK
Reply
Arunvijai_4
Honored Contributor

‎10-03-2005 12:17 AM

‎10-03-2005 12:17 AM

Re: How to find out the logins

# last will be helpful. Use # last -R to get user's hostname.

-Arun
"A ship in the harbor is safe, but that is not what ships are built for"
Reply
Rita C Workman
Honored Contributor

‎10-03-2005 12:21 AM

‎10-03-2005 12:21 AM

Re: How to find out the logins

last will tell who logged in and when.
But you need to take note who may still have been logged in at that time.

Suppose depending on your environment, and depending on how many folks have access to stop/start DB's, your going to have to narrow down who it 'could have been'.

Rgrds,
Rita


Reply
Borislav Perkov
Respected Contributor

‎10-03-2005 12:22 AM

‎10-03-2005 12:22 AM

Re: How to find out the logins

Hi Suni,

#last -R
and you will find who was logged but also look in /var/adm/sulog to see if he used the su command to user who is able to restart the Sysbase DB,

Regards,
Borislav

Reply
Morcos
Super Advisor

‎10-03-2005 12:23 AM

‎10-03-2005 12:23 AM

Re: How to find out the logins

last will be helpful in this case.

/var/adm/wtmp : login database.

Hope this helps

Ziad
Reply
Muthukumar_5
Honored Contributor

‎10-03-2005 12:24 AM

‎10-03-2005 12:24 AM

Re: How to find out the logins

Another way is simply (if you enabled history file) then,

cd /home
for file in `find . -type f -name "*history*"`
do
grep 'sybase-stop related string' $file
done

hth.
Easy to suggest when don't know about the problem!
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.