Date: Tue, 27 Jan 2004 10:55:06 -0600 From: Eric Anderson <anderson@centtech.com> To: Peter Rosa <prosa@pro.sk> Cc: freebsd-security@freebsd.org Subject: Re: Possible compromise ? Message-ID: <401697EA.3070108@centtech.com> In-Reply-To: <003001c3e4f4$dbba7910$3501a8c0@peter> References: <01a901c3e294$8ea8a500$3501a8c0@peter> <1653155537.20040126121155@b-o.ru> <003001c3e4f4$dbba7910$3501a8c0@peter>
next in thread | previous in thread | raw e-mail | index | archive | help
Peter Rosa wrote: > Hello, > > please, is there some way to list ALL users, who connect remotely to my > machine ? It is our gateway, so it should be one-user machine, but if I list > /var/log/lastlog binary file, there are some lines showing usage of ttyp0. > That console I have disabled in ttys, so why there are that lines ? How > could I make FreeBSD to show that file in readable way ? man last > Was my machine compromised ? More information and a more clearly worded question would help. Eric -- ------------------------------------------------------------------ Eric Anderson Sr. Systems Administrator Centaur Technology Today is the tomorrow you worried about yesterday. ------------------------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?401697EA.3070108>