Bad login monitoring
Does anyone know of a script (unencumbered by license) that can combine the
results of the last and lastb commands on Solaris.
What I am looking for is a single unified output that is sorted by datetime
but contains both successful and unsuccessful login attempts, and ideally
that can be run periodically (eg cron every five minutes) and append to the
same single logfile in such a way that no duplicate entries are created and
that the single log file can be archived.
It would be absolutely fantastic if the logfile and ourput that the script
produces is suitable for auditing purposes to comply with regulations.