linux-failed-logins
Retrieves the log of failed login attempts from the /var/log/btmp file.
Syntax
linux-failed-logins [ignore-error=BOOL]
Optional Parameter
ignore-error=BOOL
- Boolean option to handle error when the /var/log/btmp file cannot be read (default:
f
).t
: Exits gracefully if an error occursf
: Fails if an error occurs
Description
After running the linux-system-files command, the output fields are as follows:
Output Fields
Field | Type | Description |
---|---|---|
_time | Date | Last failed login time |
src_ip | IPv4 address | Remote IP address from which login was attempted |
user | String | User ID |