Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 25 Jun 2010 21:18:37 -0400
From:      "b. f." <bf1783@googlemail.com>
To:        Martin McCormick <martin@dc.cis.okstate.edu>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Running an Old Kernel
Message-ID:  <AANLkTilEOzvo8d0CaXhnnIYoFAa5qIDjoIYJ3kgwNcMZ@mail.gmail.com>
In-Reply-To: <AANLkTimPERjZpN_-GIUjUGsARJZmuUppVwKqJWctr2tY@mail.gmail.com>
References:  <AANLkTilZ7FIuLO-TguqDAGRwb4ZzWNVDT88HqOD6zMYF@mail.gmail.com> <AANLkTimPERjZpN_-GIUjUGsARJZmuUppVwKqJWctr2tY@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
On 6/25/10, b. f. <bf1783@googlemail.com> wrote:
> On 6/25/10, b. f. <bf1783@googlemail.com> wrote:
>> Martin McCormick wrote:
>>> I have been attempting to shut off that "last login" message
>>> that occurs on some FreeBSD systems every time one runs a sudo
>>> command. I decided to bring back the last kernel which was the
> ...
>> Why on earth are you tinkering with your kernels in order to change
>> sudo output?  You should instead be editing configuration files
>> associated with sudo and related base system utilities, or patching
>> sudo.
>
> I should be more specific: I think you should be able to disable the
> message by commenting out the lines that refer to pam_lastlog.so in
> /etc/pam.d/system, /etc/pam.d/xdm, and /etc/pam.d/telnetd.  But in
> doing so, you will lose some of the security and accounting benefits
> of last(1) and friends.  Is it really worth it, just to silence some
> console messages? In any event, don't tinker with your kernel because
> of this.  It won't help, and it may break your system.

Looking at Matthew Seaman's earlier response, I find that his
suggestion to make  changes to ${PREFIX}/etc/pam.d/sudo is more
appropriate than my guess above.  But you probably need to look into
the details, because judging from the comments in the
${PREFIX}/etc/pam.d/sudo.default file, there seems to be some
subtleties involving sudo and pam_lastlog.  Look at the pertinent
manpages, the sudo docs, and:

http://www.freebsd.org/doc/en/articles/pam/index.html

b.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTilEOzvo8d0CaXhnnIYoFAa5qIDjoIYJ3kgwNcMZ>