Which is curious, as the IP address no longer has a machine on it. Then I checked, and after a while I suddenly noticed /var/log/auth.log was dated March 8, 2004! Apparently, the security script just checks the date, but not the year? Is it supposed to work this way? It gave me a good scare, all for nothing. :)
The exact same thing happened to me a few months ago. I think the script is written with the assumption that the auth.log will be rotated at least once a year; but if you don't have a lot of authorization activity, it can easily go beyond that without rotating, because the default for newsyslog.conf is to only rotate auth.log when it gets beyond a certain size. Just add a time for auth.log to rotate, and this will go away.
(rotates auth.log once a month) /var/log/auth.log 600 7 256 $M1D0 Z
-- David Fleck [EMAIL PROTECTED]
_______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"