/usr/lib/acct/fwtmp trouble

While trying to trim my wmtpx file I found what I think is a bug.

I used:

/usr/lib/acct/fwtmp < /var/adm/wmtpx > /var/tmp/wtmp.ascii

/usr/bin/tail -500 /var/tmp/wmtp.ascii > /var/tmp/wtmpx-last500

/usr/lib/acct/fwtmp -ic </var/tmp/wtmpx-last500 >/var/tmp/wtmpx

When I now use the who /var/tmp/wtmpx command I get:

who: Error entry has ut_type of 14898

when maximim is 9

The value 14898 varies but is repeated over and over.

The original /var/adm/wtmpx file was not corrupt and had displayed no errors with the who command. Unless I am reading the fwtmp manual page incorrectly this command should allow me to trim my wmtpx file to the last 500 entries.

I am working on an Ultra 5 running Solaris 8 for this test, but this happens on most all of our Solaris systems.

I really do not want to just zero out the wtmpx file, and start over.

Any suggestions?

[946 byte] By [BobbyHa] at [2007-11-27 1:03:23]

«« Java Version Issue
»» Where do I get the Request-Object

# 1

I haven't really taken a deep look at your problem, but i know that there where plenty of bugs in fwtmp in the Solaris 8 and Solaris 9 releases, which where fixed by patches. So ensure that you have the latest patches installed.

The SPARC patches are, for Solaris 9:

117473-01

For Solaris 8:

116943-02

.7/M.

mAbrantea at 2007-7-11 23:38:27 >

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

/usr/lib/acct/fwtmp trouble

General New Topic

General Hot Topic

General

All Classified