Deru Knowledgebase
Search:     Advanced search
Browse by category:
Contact Us
Deru Knowledgebase / Security / Monitoring Remote logins to Linux server.

Monitoring Remote logins to Linux server.
Print
Add comment
Views: 942
Votes: 0
Comments: 0
Posted: 05 Jan, 2008
by:
Updated: 05 Jan, 2008
by:

Remote login enabled servers have greater vulnerability so it is always recommended to monitor the remote access to the server. Remote access detailes are logged in to a file, /var/log/wtmp.

Since this is a binary file, use the following command to print the out put to screen.

utmpdump /var/log/wtmp | less

Scan through the remote login IPs and you if found any login attempts from undesirable sources, you may block them.

Others in this Category
document 406 Not Acceptable Error
document How to tackle hacking attempts
document How to disable entropy chat in cPanel server?
document How to disable SSH password authentication in a cPanel server from WHM ?
document Block an IP address in windows server using IPSec
document SYN attacks on server


RSS
Powered by Deru Communications (Webhosting Knowledgebase)