[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Deleted auth.log

On Sat, 3 Dec 2005 10:42 am, René Seindal wrote:
> Roberto C. Sanchez wrote (03-12-2005 00:34):
> > That is because, although auth.log is gone, any file descriptors that
> > were open to it are still available.  Thus, until all the file
> > descriptors have also been released, the file still "exists."  If you
> > are not certain of which applications on your system normally write to
> > auth.log, your best option may be a reboot.

This leads to an interesting question - are there any tools that can reveal 
"lost" files - those who no-longer have an entry in the fs, but are still 

I would imagine that certain sockets and temp files would fall in this 

Reply to: