Greetings,
We are using the "who" command in a script to assist in setting some environment variables. I recently installed POLYCENTER Security Intrusion Detector & found that the "who" command was generating a audit log with a Permission denied (13) error when attempting to open the /var/adm/utmp file. In reviewing the audit logs I have found that after getting this error, "who" does another open for /var/adm/utmp successfully. This does not happen when root executes "who".
This looks like a bug to me. Does anyone out there have any info on this.
Thanks,
[=================================
[ Randy Rodgers
[ rrodgers_at_ci.ft-wayne.in.us
[ System Administrator
[ Allen County/City of Fort Wayne
[ Information Systems
[ (219)449-7660
[=================================
Received on Fri May 24 1996 - 17:08:05 NZST