[英]how to disable writing to /var/log/lastlog
how do i disable writing to /var/log/lastlog file. 我如何禁用写入/ var / log / lastlog文件。 In our system we had to use a vfat file system for /var/log and since it doesn't support sparse files, our lastlog file gets real huge.
在我们的系统中,我们必须对/ var / log使用vfat文件系统,由于它不支持稀疏文件,因此我们的lastlog文件变得非常庞大。 I'm tried 'session required pam_lastlog.so noupdate' as last rule in /etc/pam.d/login but it doesn't seem to be working.
我在/etc/pam.d/login中尝试了“会话所需的pam_lastlog.so noupdate”作为最后一条规则,但它似乎没有用。
having 'LASTLOG_ENAB no' in /etc/login.defs isn't also working. 在/etc/login.defs中使用'LASTLOG_ENAB no'也不起作用。
Appreciate any help. 感谢任何帮助。 Don't get any hits for this on web.
在网络上没有任何点击。
First, the answer: There are a number of ways to do it. 首先,答案是:有很多方法可以做到这一点。
Obligatory warnings: 强制性警告:
1) Removing lastlog disrupts the audit-trail on your system and may cause various security tools to fail to function properly, or at all. 1)删除lastlog会破坏系统上的审核线索,并可能导致各种安全工具无法正常运行或根本无法正常运行。
2) vfat does not support sparse files... It also does not support journaling or individual file ownership. 2)vfat不支持稀疏文件...它也不支持日志或个人文件所有权。 By putting /var/log on vfat you are making it much, much easier for crackers (or even power failures) to potentially alter, damage, or destroy your logfiles.
通过将/ var / log放在vfat上,可以使破解者(甚至断电)更容易地潜在地更改,破坏或破坏日志文件。 There are lots of better filesystems out there, you should probably find one.
有很多更好的文件系统,您可能应该找到一个。 But that would be a separate question.
但这将是一个单独的问题。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.