what if someone broke into my server?
Is there anyway to view failed login attempts of someone trying to login as 'root' or otherwise?
Let's say someone got into the server with root access: could he have deleted any records of him being in the server so that they would be no way for me to find out?
Neither of these examples have happened, just wondering for the future so I can know what to watch for.
