Re: Clearing log files of an accidental entry of password as username

That depends on what you've installed on your machine. /var/log/messages or /var/log/auth.log or wherever your syslog implementation dumps PAM's logs to should be checked.

However, why not just grep -RlF offending_string /var/log[...