HPE Community
Operating System - HP-UX
1820238 Members
2484 Online
109620 Solutions
New Discussion юеВ

Managing /var/adm/wtmp

 
SOLVED
Go to solution
Patrick Bridwell
Occasional Advisor

тАО08-24-2000 06:46 AM

тАО08-24-2000 06:46 AM

Managing /var/adm/wtmp

What's the best way to delete records from /var/adm/wtmp? I know I can delete the whole file but I want to keep about a month of data and purge the rest.
0 Kudos
Reply
10 REPLIES 10
Alex Glennie
Honored Contributor

тАО08-24-2000 06:48 AM

тАО08-24-2000 06:48 AM

Re: Managing /var/adm/wtmp

cat /dev/null > /var/adm/wtmp
0 Kudos
Reply
Alex Glennie
Honored Contributor

тАО08-24-2000 06:50 AM

тАО08-24-2000 06:50 AM

Re: Managing /var/adm/wtmp

Note that zeroing /var/adm/wtmp on a running
system may cause errors to be reported from the who command. These errors
are caused by who not finding the users currently logged in. The best way to
trim /var/adm/wtmp is to do it in single user mode. Do not zero the
/etc/utmp...this is done automatically
0 Kudos
Reply
melvyn burnard
Honored Contributor

тАО08-24-2000 06:50 AM

тАО08-24-2000 06:50 AM

Re: Managing /var/adm/wtmp

I think the fwtmp command may be the one to use here
do man fwtmp
My house is the bank's, my money the wife's, But my opinions belong to me, not HP!
0 Kudos
Reply
Rick Garland
Honored Contributor

тАО08-24-2000 06:53 AM

тАО08-24-2000 06:53 AM

Re: Managing /var/adm/wtmp

Using SAM; Routine Tasks - can trim the file to the recommended size.
0 Kudos
Reply
Patrick Bridwell
Occasional Advisor

тАО08-24-2000 06:59 AM

тАО08-24-2000 06:59 AM

Re: Managing /var/adm/wtmp

SAM, to my knowledge, does not allow trimming of binary files.

Assigning /dev/null to the file would wipe out the whole file...I want to keep a months worth of data.

I read the man page on fwtmp but it is not clear on what I should do.
0 Kudos
Reply
Tom Danzig
Honored Contributor

тАО08-24-2000 07:07 AM

тАО08-24-2000 07:07 AM

Solution

Re: Managing /var/adm/wtmp

You could do:

cat /var/adm/wtmp | /usr/sbin/acct/fwtmp > /tmp/ascii_wtmp

vi /tmp/ascii_wtp to delete the records you want.

cat /tmp/ascii_wtmp | /usr/sbin/acct/fwtmp -ic > /var/adm/wtmp

I've done this and it works quite well.
Reply
James R. Ferguson
Acclaimed Contributor

тАО08-24-2000 07:08 AM

тАО08-24-2000 07:08 AM

Re: Managing /var/adm/wtmp

Pat:

You might try using fwtmp to convert the current wtmp file to an ASCII file that you can further manuipulate with a script of your own which trims the contents down.

...JRF...
0 Kudos
Reply
Antoanetta Naghiu
Esteemed Contributor

тАО08-24-2000 07:22 AM

тАО08-24-2000 07:22 AM

Re: Managing /var/adm/wtmp

If you want to see wtmp contains, run last (see man last). To clean up wtmp, I'm using #>0 (or if you are not lazy to type, same thing as Alex said: #cat /dev/null >/var/adm/wtmp.
0 Kudos
Reply
Patrick Bridwell
Occasional Advisor

тАО08-24-2000 07:38 AM

тАО08-24-2000 07:38 AM

Re: Managing /var/adm/wtmp

Thanks,

Tom Danzig's answer hit the nail on the head.

I appreciate all of your replies.
0 Kudos
Reply
CHRIS_ANORUO
Honored Contributor

тАО08-24-2000 09:33 AM

тАО08-24-2000 09:33 AM

Re: Managing /var/adm/wtmp

Patrick,

It will be a great work to put the line commands in cron file. Example:
0 22 1 6,12 * /var/adm/wtmp | /usr/sbin/acct/fwtmp > /tmp/ascii_wtmp
5 22 1 6,12 * /tmp/ascii_wtmp | /usr/sbin/acct/fwtmp > /var/adm/wtmp

Chris
When We Seek To Discover The Best In Others, We Somehow Bring Out The Best In Ourselves.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.