Red Hat Bugzilla – Bug 428
messages in /var/log/messages reports incorrect logout times
Last modified: 2008-05-01 11:37:48 EDT
I'm not actually sure if this is being caused by sysklogd or some other package. I have applied all RPM's from the errata pages and still notice the following in /var/log/messages: Dec 15 08:45:20 bighat login[294]: ROOT LOGIN on tty2 Dec 15 08:45:20 bighat PAM_pwdb[294] (login) session closed for user root Even though I'm still logged in, it looks as though I logged in and then right back out. Any help would be most appreciated. Thanks for making a great product. -Eric
Some over zealous hacking in util-linux-2.[89] to remove an "extra" process resulted in PAM credentials being discarded before forking the user's shell rather than after the shell exits. The good old util-linux-2.7 behavior (fork and waitpid) has been restored. Try the Raw Hide util-linux-2.9-4 rpm and repopen this bug if that rpm does not fix your problem.
I can't upgrade to util-linux-2.8-11 (rawhide) without upgrading to slang-1.2.2-3 (rawhide), which in turn would require updating a bunch of other packages, including: gecko, kbdconfig, mc, mouseconfig, newt, ntsysv, rhs-hwdiag, timeconfig, tkmc & Xconfigurator. I'd rather stay at the relase 5.2 level if possible since this will be a production server. Any other ideas? Thanks!
You can upgrade the RPM by using rpm --nodeps -U util-linux-blah... unless you're planning on using cfdisk, you won't have a problem. Alternatively, you can rebuild the rawhide RPM.
There is an errata item for util-linux-2.9-4 on Red Hat 5.2 that will be out Real Soon Now.