Subject: | |
From: | |
Reply To: | |
Date: | Wed, 24 Apr 2002 11:39:47 +0200 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
as an addition to Wirts suggestion of using an "option logon"-udc
(where you have acces to all session-info), there's an enhancement to
the :SHOWVAR command, where you can specify a job/session number (as in:
:showvar @;job=#S6224
HPSTDIN_ACCESS_TYPE = NS/VT
HPSTDIN_TERMINAL_TYPE = 0 (T_DATA_ENTRY(4))
HPSTDIN_TRANSPORT_TYPE = TCP/IP
HPSTDIN_NETWORK_NODE = MYPC.MYDOMAIN.SE
HPSTDIN_NETWORK_ADDR = x.y.z.x
HPSTDIN_LINK_ADDR = not set yet...
HPVT_CLIENT_VENDOR = WRQ_CONNECTION_3000_FOR_WINDOWS
HPVT_CLIENT_OPSYS = MS_DOS
HPVT_CLIENT_MODE = STREAM_MODE
HPVT_CLIENT_TCP_PORT = 3840
HPVT_CLIENT_LDEV_NUM =
HPVT_CLIENT_JOB_NUM =
HPVT_CLIENT_JOB_NAME =
TZ = MET-1METDST
VSETNEXTCENTURY = 3
)
hth
/per
--------------------------------------------------
Per Östberg / [log in to unmask]
tel 08-585 812 13
mob 070-484 02 53 / fax 08-585 877 10
LabMedicin-IT, Huddinge Universitetssjukhus
C1 51 / 141 86 HUDDINGE
--------------------------------------------------
> -----Ursprungligt meddelande-----
> Från: Richard.Barker /internet [mailto:[log in to unmask]]
> Skickat: den 24 april 2002 10:50
> Till: HP3000-L /internet
> Kopia: Richard.Barker /internet
> Ämne: Re: [HP3000-L] Hacker question
>
>
> Hi
>
> We've got someone logging on to our system as an unauthorised
> user. Now I
> can easily kick them off, but I would love to know if it is someone
> internally logging on.
>
> Is there anyway I can narrow down the Reflection session or
> the IP address.
>
> * To join/leave the list, search archives, change list settings, *
> * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
>
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|
|
|