It's a cron job belonging to root that changes its user before it goes to work. At 11:21 2002-04-05 +0600, Kirill Zverev wrote:
Hi! I found that in my logs: Apr 4 06:25:01 cmss su[30315]: + ??? root-nobodyApr 4 06:25:01 cmss PAM_unix[30315]: (su) session opened for user nobody by (uid=0)who could use su at six o'clock in the morning? -- Regards, Kirill Zverev <mailto:kirill@cmss.ru>
-- To UNSUBSCRIBE, email to debian-security-request@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org