Problem solve Get help with specific problems with your technologies, process and projects.

Detecting failed su to root attempts

This one-liner will list all failed "su" attempts to the superuser account.

This one-liner will list all failed "su" attempts to the superuser account. You'll be amazed at how many users attempt to hack root account.

cat /var/adm/sulog | nawk '$4 == "-" {print $0}' | grep 'root$'


This was last published in October 2002

Dig Deeper on Alternative operating system security

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly.com

Close