View previous topic :: View next topic |
Author |
Message |
NotExcessive Apprentice
Joined: 10 May 2005 Posts: 235
|
Posted: Tue Sep 18, 2012 9:51 pm Post subject: syslog-ng and dhcpd keep crashing |
|
|
Hi all - I have a problem that I noticed started a couple of weeks ago. Every now and again, the PCs connected to the firewall via WiFi would get disconnected. Upon running rc-status I'd see that dhcpd had crashed, so that explained why the PCs were not getting connections to the Internet. Restarting dhcpd would get them back on the air again, but I couldn't see why dhcpd was occasionally crashing - no error messages at all. So I thought I'd investigate later when I had more time.
However, in the last week, I've noticed that syslog-ng has also started to exhibit the same behaviour in that it would occasionally crash. The way I discovered this was that dhcpd would crash, I'd do an rc-status, and notice that now two services had died instead of just one. This time though I do have an error message, repeated hundreds of times in consecutive lines in /var/log/messages, so it's pretty busy:
Code: | Sep 19 07:33:42 gatekeeper syslog-ng[4883]: Number of allowed concurrent connections reached, rejecting connection; client='AF_UNIX(anonymous)', local='AF_UNIX(/dev/log)', max='256'
|
No wonder /var/log/messages has reached several GB in size!
So, question is, can anyone offer an explanation as to what's happening? The configuration of the system hasn't changed for over a year, and it's been running fine. I can't see where the extra connections to syslog-ng are coming from, and I still don't know why dhcpd is crashing and if these two crashes are somehow linked to each other. |
|
Back to top |
|
|
BillWho Veteran
Joined: 03 Mar 2012 Posts: 1600 Location: US
|
Posted: Wed Sep 19, 2012 1:08 am Post subject: |
|
|
NotExcessive,
Not sure what the cause of the crashes and large /var/log/messages are at this time, but start by checking how your logs are being handled.
Code: | /usr/sbin/logrotate -d /etc/logrotate.conf |
And Code: | lsof -c syslog-ng|grep -v mem |
will list syslog-ng's connections _________________ Good luck
Since installing gentoo, my life has become one long emerge |
|
Back to top |
|
|
NotExcessive Apprentice
Joined: 10 May 2005 Posts: 235
|
Posted: Wed Sep 19, 2012 12:35 pm Post subject: |
|
|
Thanks for that. This is what I get when the system runs for a little while after rebooting, when everything looks normal:
Code: | COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
syslog-ng 1901 root cwd DIR 104,3 4096 2 /
syslog-ng 1901 root rtd DIR 104,3 4096 2 /
syslog-ng 1901 root txt REG 104,3 14808 932093 /usr/sbin/syslog-ng
syslog-ng 1901 root 0r CHR 1,3 0t0 2792 /dev/null
syslog-ng 1901 root 1w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1901 root 2w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root cwd DIR 104,3 4096 656095 /var/run
syslog-ng 1904 root rtd DIR 104,3 4096 2 /
syslog-ng 1904 root txt REG 104,3 14808 932093 /usr/sbin/syslog-ng
syslog-ng 1904 root 0r CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root 1w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root 2w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root 3u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 4w FIFO 0,7 0t0 4509 pipe
syslog-ng 1904 root 5u unix 0xffff88007c73ea00 0t0 3731 /var/run/syslog-ng.ctl
syslog-ng 1904 root 6u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 7u REG 104,3 16384 653016 /var/lib/misc/syslog-ng.persist
syslog-ng 1904 root 8u unix 0xffff88007c73e700 0t0 3729 /dev/log
syslog-ng 1904 root 9r REG 0,3 0 4026532044 /proc/kmsg
syslog-ng 1904 root 10u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 11u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 12u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 13u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 14u unix 0xffff880063fb5500 0t0 5907 /dev/log
syslog-ng 1904 root 15u unix 0xffff8800638c3300 0t0 6395 /dev/log
syslog-ng 1904 root 16u unix 0xffff880063ebcf00 0t0 6532 /dev/log
syslog-ng 1904 root 17u unix 0xffff880063ebdb00 0t0 6534 /dev/log
syslog-ng 1904 root 18w REG 104,3 469142 653019 /var/log/messages
syslog-ng 1904 root 19w CHR 4,12 0t0 458 /dev/tty12
syslog-ng 1904 root 20u unix 0xffff88007c9a5800 0t0 3809 /dev/log
syslog-ng 1904 root 21u unix 0xffff880063ebed00 0t0 11565 /dev/log
syslog-ng 1904 root 22u unix 0xffff880063ebea00 0t0 10522 /dev/log
syslog-ng 1904 root 23u unix 0xffff88007c73fc00 0t0 4772 /dev/log
syslog-ng 1904 root 24u unix 0xffff8800638c2100 0t0 4973 /dev/log
syslog-ng 1904 root 25u unix 0xffff8800638c3c00 0t0 6405 /dev/log
syslog-ng 1904 root 26u unix 0xffff8800638c0000 0t0 6407 /dev/log
syslog-ng 1904 root 27u unix 0xffff8800638c0f00 0t0 6512 /dev/log
syslog-ng 1904 root 28u unix 0xffff880063ebc900 0t0 6514 /dev/log
syslog-ng 1904 root 29u unix 0xffff880058757300 0t0 13771 /dev/log
syslog-ng 1904 root 30u unix 0xffff880058756d00 0t0 13773 /dev/log
syslog-ng 1904 root 31u unix 0xffff880063fb6d00 0t0 6033 /dev/log
syslog-ng 1904 root 32u unix 0xffff880063fb7900 0t0 6035 /dev/log
syslog-ng 1904 root 33u unix 0xffff880063fb6700 0t0 6069 /dev/log
syslog-ng 1904 root 34u unix 0xffff880063fb6100 0t0 6077 /dev/log
syslog-ng 1904 root 35u unix 0xffff88007c73ed00 0t0 12125 /dev/log
syslog-ng 1904 root 36u unix 0xffff880058754300 0t0 12127 /dev/log
syslog-ng 1904 root 37u unix 0xffff880063fb4900 0t0 11205 /dev/log
syslog-ng 1904 root 38u unix 0xffff88007c9a6d00 0t0 11216 /dev/log
syslog-ng 1904 root 39u unix 0xffff880063ebde00 0t0 12349 /dev/log
syslog-ng 1904 root 40u unix 0xffff880058755b00 0t0 12206 /dev/log
syslog-ng 1904 root 41u unix 0xffff880058756700 0t0 12208 /dev/log
syslog-ng 1904 root 42u unix 0xffff8800587c8f00 0t0 12887 /dev/log
syslog-ng 1904 root 43u unix 0xffff8800587c9b00 0t0 12889 /dev/log
syslog-ng 1904 root 44u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 45u 0000 0,8 0 2684 anon_inode
|
And this is what I see after several hours, when it goes ga-ga:
Code: | COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
syslog-ng 1901 root cwd DIR 104,3 4096 2 /
syslog-ng 1901 root rtd DIR 104,3 4096 2 /
syslog-ng 1901 root txt REG 104,3 14808 932093 /usr/sbin/syslog-ng
syslog-ng 1901 root 0r CHR 1,3 0t0 2792 /dev/null
syslog-ng 1901 root 1w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1901 root 2w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root cwd DIR 104,3 4096 656095 /var/run
syslog-ng 1904 root rtd DIR 104,3 4096 2 /
syslog-ng 1904 root txt REG 104,3 14808 932093 /usr/sbin/syslog-ng
syslog-ng 1904 root 0r CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root 1w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root 2w CHR 1,3 0t0 2792 /dev/null
syslog-ng 1904 root 3u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 4w FIFO 0,7 0t0 4509 pipe
syslog-ng 1904 root 5u unix 0xffff88007c73ea00 0t0 3731 /var/run/syslog-ng.ctl
syslog-ng 1904 root 6u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 7u REG 104,3 16384 653016 /var/lib/misc/syslog-ng.persist
syslog-ng 1904 root 8u unix 0xffff88007c73e700 0t0 3729 /dev/log
syslog-ng 1904 root 9r REG 0,3 0 4026532044 /proc/kmsg
syslog-ng 1904 root 10u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 11u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 12u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 13u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 14u unix 0xffff880063fb5500 0t0 5907 /dev/log
syslog-ng 1904 root 15u unix 0xffff8800638c3300 0t0 6395 /dev/log
syslog-ng 1904 root 16u unix 0xffff880063ebcf00 0t0 6532 /dev/log
syslog-ng 1904 root 17u unix 0xffff880063ebdb00 0t0 6534 /dev/log
syslog-ng 1904 root 18w REG 104,3 90394023 653019 /var/log/messages
syslog-ng 1904 root 19w CHR 4,12 0t0 458 /dev/tty12
syslog-ng 1904 root 20u unix 0xffff88007c9a5800 0t0 3809 /dev/log
syslog-ng 1904 root 21u unix 0xffff880063ebed00 0t0 11565 /dev/log
syslog-ng 1904 root 22u unix 0xffff880063ebea00 0t0 10522 /dev/log
syslog-ng 1904 root 23u unix 0xffff88007c73fc00 0t0 4772 /dev/log
syslog-ng 1904 root 24u unix 0xffff8800638c2100 0t0 4973 /dev/log
syslog-ng 1904 root 25u unix 0xffff8800638c3c00 0t0 6405 /dev/log
syslog-ng 1904 root 26u unix 0xffff8800638c0000 0t0 6407 /dev/log
syslog-ng 1904 root 27u unix 0xffff8800638c0f00 0t0 6512 /dev/log
syslog-ng 1904 root 28u unix 0xffff880063ebc900 0t0 6514 /dev/log
syslog-ng 1904 root 29u unix 0xffff880058757300 0t0 13771 /dev/log
syslog-ng 1904 root 30u unix 0xffff880058756d00 0t0 13773 /dev/log
syslog-ng 1904 root 31u unix 0xffff880063fb6d00 0t0 6033 /dev/log
syslog-ng 1904 root 32u unix 0xffff880063fb7900 0t0 6035 /dev/log
syslog-ng 1904 root 33u unix 0xffff880063fb6700 0t0 6069 /dev/log
syslog-ng 1904 root 34u unix 0xffff880063fb6100 0t0 6077 /dev/log
syslog-ng 1904 root 35u unix 0xffff88007c73ed00 0t0 12125 /dev/log
syslog-ng 1904 root 36u unix 0xffff880058754300 0t0 12127 /dev/log
syslog-ng 1904 root 37u unix 0xffff880063fb4900 0t0 11205 /dev/log
syslog-ng 1904 root 38u unix 0xffff88007c9a6d00 0t0 11216 /dev/log
syslog-ng 1904 root 39u unix 0xffff880063ebde00 0t0 12349 /dev/log
syslog-ng 1904 root 40u unix 0xffff880058755b00 0t0 12206 /dev/log
syslog-ng 1904 root 41u unix 0xffff880058756700 0t0 12208 /dev/log
syslog-ng 1904 root 42u unix 0xffff8800587c8f00 0t0 12887 /dev/log
syslog-ng 1904 root 43u unix 0xffff8800587c9b00 0t0 12889 /dev/log
syslog-ng 1904 root 44u unix 0xffff88004b1d4300 0t0 13918 /dev/log
syslog-ng 1904 root 45u unix 0xffff88004b1d4f00 0t0 13920 /dev/log
syslog-ng 1904 root 46u unix 0xffff88004b1d5e00 0t0 13986 /dev/log
syslog-ng 1904 root 47u unix 0xffff88004b1d6a00 0t0 13988 /dev/log
syslog-ng 1904 root 48u unix 0xffff880058755200 0t0 13810 /dev/log
syslog-ng 1904 root 49u unix 0xffff880063ebfc00 0t0 13812 /dev/log
syslog-ng 1904 root 50u unix 0xffff8800587cb300 0t0 13109 /dev/log
syslog-ng 1904 root 51u unix 0xffff8800587cad00 0t0 13111 /dev/log
syslog-ng 1904 root 52u unix 0xffff88004b1d7000 0t0 14094 /dev/log
syslog-ng 1904 root 53u unix 0xffff88004b1d7c00 0t0 14096 /dev/log
syslog-ng 1904 root 54u unix 0xffff88004b02e700 0t0 15447 /dev/log
syslog-ng 1904 root 55u unix 0xffff88004b02c900 0t0 15449 /dev/log
syslog-ng 1904 root 56u unix 0xffff8800587c9e00 0t0 13207 /dev/log
syslog-ng 1904 root 57u unix 0xffff8800587c8000 0t0 13209 /dev/log
syslog-ng 1904 root 58u unix 0xffff88004b1d5800 0t0 14140 /dev/log
syslog-ng 1904 root 59u unix 0xffff88004b02c300 0t0 14142 /dev/log
syslog-ng 1904 root 60u unix 0xffff8800587ca400 0t0 13276 /dev/log
syslog-ng 1904 root 61u unix 0xffff88004b2c4900 0t0 13278 /dev/log
syslog-ng 1904 root 62u unix 0xffff88004b02d200 0t0 14276 /dev/log
syslog-ng 1904 root 63u unix 0xffff88004b02de00 0t0 14278 /dev/log
syslog-ng 1904 root 64u unix 0xffff88004b2c5200 0t0 14377 /dev/log
syslog-ng 1904 root 65u unix 0xffff88004b2c5e00 0t0 14379 /dev/log
syslog-ng 1904 root 66u unix 0xffff88004b02ed00 0t0 15426 /dev/log
syslog-ng 1904 root 67u unix 0xffff88004b02f900 0t0 15428 /dev/log
syslog-ng 1904 root 68u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 69u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 70u unix 0xffff88004b3a4300 0t0 15556 /dev/log
syslog-ng 1904 root 71u unix 0xffff88004b3a4f00 0t0 15558 /dev/log
syslog-ng 1904 root 72u unix 0xffff88004b2c7900 0t0 14494 /dev/log
syslog-ng 1904 root 73u unix 0xffff88004b2c6d00 0t0 14496 /dev/log
syslog-ng 1904 root 74u unix 0xffff88004a521e00 0t0 18027 /dev/log
syslog-ng 1904 root 75u unix 0xffff88004a522a00 0t0 18029 /dev/log
syslog-ng 1904 root 76u unix 0xffff88004b2c6700 0t0 14538 /dev/log
syslog-ng 1904 root 77u unix 0xffff8800587ca700 0t0 14540 /dev/log
syslog-ng 1904 root 78u unix 0xffff88004b384300 0t0 14558 /dev/log
syslog-ng 1904 root 79u unix 0xffff88004b384f00 0t0 14560 /dev/log
syslog-ng 1904 root 80u unix 0xffff88004b385500 0t0 14578 /dev/log
syslog-ng 1904 root 81u unix 0xffff88004b386100 0t0 14580 /dev/log
syslog-ng 1904 root 82u unix 0xffff88004b3a7300 0t0 15855 /dev/log
syslog-ng 1904 root 83u unix 0xffff88004b3a6d00 0t0 15857 /dev/log
syslog-ng 1904 root 84u unix 0xffff88004b386d00 0t0 14643 /dev/log
syslog-ng 1904 root 85u unix 0xffff88004b387900 0t0 14645 /dev/log
syslog-ng 1904 root 86u unix 0xffff88004b3a6400 0t0 15928 /dev/log
syslog-ng 1904 root 87u unix 0xffff88004b3a5800 0t0 15930 /dev/log
syslog-ng 1904 root 88u unix 0xffff88004b387c00 0t0 14773 /dev/log
syslog-ng 1904 root 89u unix 0xffff88004ad78300 0t0 14775 /dev/log
syslog-ng 1904 root 90u unix 0xffff88004ad78900 0t0 14793 /dev/log
syslog-ng 1904 root 91u unix 0xffff88004ad79500 0t0 14795 /dev/log
syslog-ng 1904 root 92u unix 0xffff88004ad79b00 0t0 14839 /dev/log
syslog-ng 1904 root 93u unix 0xffff88004ad7a700 0t0 14841 /dev/log
syslog-ng 1904 root 94u unix 0xffff88004ad7ad00 0t0 14859 /dev/log
syslog-ng 1904 root 95u unix 0xffff88004ad7b900 0t0 14861 /dev/log
syslog-ng 1904 root 96u unix 0xffff88004addc300 0t0 14901 /dev/log
syslog-ng 1904 root 97u unix 0xffff88004addcf00 0t0 14903 /dev/log
syslog-ng 1904 root 98u unix 0xffff88004addd500 0t0 14917 /dev/log
syslog-ng 1904 root 99u unix 0xffff88004adde100 0t0 14919 /dev/log
syslog-ng 1904 root 100u unix 0xffff88004adde700 0t0 14939 /dev/log
syslog-ng 1904 root 101u unix 0xffff88004addf300 0t0 14941 /dev/log
syslog-ng 1904 root 102u unix 0xffff88004b3a5200 0t0 16392 /dev/log
syslog-ng 1904 root 103u unix 0xffff88004af70300 0t0 16394 /dev/log
syslog-ng 1904 root 104u unix 0xffff88004addf600 0t0 15007 /dev/log
syslog-ng 1904 root 105u unix 0xffff88004af8c900 0t0 15009 /dev/log
syslog-ng 1904 root 106u unix 0xffff88004af8cf00 0t0 15023 /dev/log
syslog-ng 1904 root 107u unix 0xffff88004af8db00 0t0 15025 /dev/log
syslog-ng 1904 root 108u unix 0xffff88004af71500 0t0 16558 /dev/log
syslog-ng 1904 root 109u unix 0xffff88004af72100 0t0 16560 /dev/log
syslog-ng 1904 root 110u unix 0xffff88004af8e700 0t0 15091 /dev/log
syslog-ng 1904 root 111u unix 0xffff88004af8f300 0t0 15093 /dev/log
syslog-ng 1904 root 112u unix 0xffff88004af72d00 0t0 16686 /dev/log
syslog-ng 1904 root 113u unix 0xffff88004af73900 0t0 16688 /dev/log
syslog-ng 1904 root 114u unix 0xffff88004af72700 0t0 16706 /dev/log
syslog-ng 1904 root 115u unix 0xffff88004af70900 0t0 16708 /dev/log
syslog-ng 1904 root 116u unix 0xffff88004a8e0300 0t0 16722 /dev/log
syslog-ng 1904 root 117u unix 0xffff88004a8e0f00 0t0 16724 /dev/log
syslog-ng 1904 root 118u unix 0xffff88004a8e1800 0t0 16837 /dev/log
syslog-ng 1904 root 119u unix 0xffff88004a8e2400 0t0 16839 /dev/log
syslog-ng 1904 root 120u unix 0xffff88004a8e2a00 0t0 16857 /dev/log
syslog-ng 1904 root 121u unix 0xffff88004a8e3600 0t0 16859 /dev/log
syslog-ng 1904 root 122u unix 0xffff88004af8f600 0t0 15341 /dev/log
syslog-ng 1904 root 123u unix 0xffff88004addf900 0t0 15343 /dev/log
syslog-ng 1904 root 124u unix 0xffff88004a988300 0t0 17409 /dev/log
syslog-ng 1904 root 125u unix 0xffff88004a988f00 0t0 17411 /dev/log
syslog-ng 1904 root 126u unix 0xffff88004a8e3900 0t0 16983 /dev/log
syslog-ng 1904 root 127u unix 0xffff88004a9f0300 0t0 16985 /dev/log
syslog-ng 1904 root 128u unix 0xffff88004a9f0900 0t0 17099 /dev/log
syslog-ng 1904 root 129u unix 0xffff88004a9f1500 0t0 17101 /dev/log
syslog-ng 1904 root 130u unix 0xffff88004a98a700 0t0 17494 /dev/log
syslog-ng 1904 root 131u unix 0xffff88004a98b300 0t0 17496 /dev/log
syslog-ng 1904 root 132u unix 0xffff88004a9f2100 0t0 17200 /dev/log
syslog-ng 1904 root 133u unix 0xffff88004a9f2d00 0t0 17202 /dev/log
syslog-ng 1904 root 134u unix 0xffff88004a9f3900 0t0 17218 /dev/log
syslog-ng 1904 root 135u unix 0xffff88004a9f1b00 0t0 17220 /dev/log
syslog-ng 1904 root 136u unix 0xffff88004ab20300 0t0 17241 /dev/log
syslog-ng 1904 root 137u unix 0xffff88004ab20f00 0t0 17243 /dev/log
syslog-ng 1904 root 138u unix 0xffff88004a989b00 0t0 17699 /dev/log
syslog-ng 1904 root 139u unix 0xffff88004a98a100 0t0 17701 /dev/log
syslog-ng 1904 root 140u unix 0xffff88004a98bc00 0t0 17719 /dev/log
syslog-ng 1904 root 141u unix 0xffff88004abe0300 0t0 17721 /dev/log
syslog-ng 1904 root 142u unix 0xffff88004abe0900 0t0 17739 /dev/log
syslog-ng 1904 root 143u unix 0xffff88004abe1500 0t0 17741 /dev/log
syslog-ng 1904 root 144u unix 0xffff88004ab22a00 0t0 18505 /dev/log
syslog-ng 1904 root 145u unix 0xffff88004ab23600 0t0 18507 /dev/log
syslog-ng 1904 root 146u unix 0xffff88004abe2100 0t0 17813 /dev/log
syslog-ng 1904 root 147u unix 0xffff88004abe2d00 0t0 17815 /dev/log
syslog-ng 1904 root 148u unix 0xffff88004ab21e00 0t0 18631 /dev/log
syslog-ng 1904 root 149u unix 0xffff88004ab21200 0t0 18633 /dev/log
syslog-ng 1904 root 150u unix 0xffff88004abe3900 0t0 17880 /dev/log
syslog-ng 1904 root 151u unix 0xffff88004abe1b00 0t0 17882 /dev/log
syslog-ng 1904 root 152u unix 0xffff88004ab22400 0t0 18669 /dev/log
syslog-ng 1904 root 153u unix 0xffff88004a518300 0t0 18671 /dev/log
syslog-ng 1904 root 154u unix 0xffff88004a518900 0t0 18788 /dev/log
syslog-ng 1904 root 155u unix 0xffff88004a519500 0t0 18790 /dev/log
syslog-ng 1904 root 156u unix 0xffff88004a520c00 0t0 17981 /dev/log
syslog-ng 1904 root 157u unix 0xffff88004a521800 0t0 17983 /dev/log
syslog-ng 1904 root 158u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 159u 0000 0,8 0 2684 anon_inode
syslog-ng 1904 root 160u unix 0xffff88004a523000 0t0 18047 /dev/log
syslog-ng 1904 root 161u unix 0xffff88004a523c00 0t0 18049 /dev/log
syslog-ng 1904 root 162u unix 0xffff88004a520600 0t0 18069 /dev/log
syslog-ng 1904 root 163u unix 0xffff88004a5e4900 0t0 18071 /dev/log
syslog-ng 1904 root 164u unix 0xffff88004a51b600 0t0 19076 /dev/log
syslog-ng 1904 root 165u unix 0xffff88004a51aa00 0t0 19078 /dev/log
syslog-ng 1904 root 166u unix 0xffff88004a5e5500 0t0 18138 /dev/log
syslog-ng 1904 root 167u unix 0xffff88004a5e6100 0t0 18140 /dev/log
syslog-ng 1904 root 168u unix 0xffff88004a5e6700 0t0 18184 /dev/log
syslog-ng 1904 root 169u unix 0xffff88004a5e7300 0t0 18186 /dev/log
syslog-ng 1904 root 170u unix 0xffff88004a519e00 0t0 19227 /dev/log
syslog-ng 1904 root 171u unix 0xffff88004a51b900 0t0 19229 /dev/log
syslog-ng 1904 root 172u unix 0xffff88004a5e7600 0t0 18226 /dev/log
syslog-ng 1904 root 173u unix 0xffff88004a520000 0t0 18228 /dev/log
syslog-ng 1904 root 174u unix 0xffff88004a750600 0t0 19364 /dev/log
syslog-ng 1904 root 175u unix 0xffff88004a751200 0t0 19366 /dev/log
syslog-ng 1904 root 176u unix 0xffff88004a751800 0t0 19380 /dev/log
syslog-ng 1904 root 177u unix 0xffff88004a752400 0t0 19382 /dev/log
syslog-ng 1904 root 178u unix 0xffff88004a7a9800 0t0 18346 /dev/log
syslog-ng 1904 root 179u unix 0xffff88004a7aa400 0t0 18348 /dev/log
syslog-ng 1904 root 180u unix 0xffff88004a7aaa00 0t0 18362 /dev/log
syslog-ng 1904 root 181u unix 0xffff88004a7ab600 0t0 18364 /dev/log
syslog-ng 1904 root 182u unix 0xffff88004a7a9200 0t0 18380 /dev/log
syslog-ng 1904 root 183u unix 0xffff88004a7a8600 0t0 18382 /dev/log
syslog-ng 1904 root 184u unix 0xffff88004a753000 0t0 19656 /dev/log
syslog-ng 1904 root 185u unix 0xffff88004a753c00 0t0 19658 /dev/log
syslog-ng 1904 root 186u unix 0xffff88004a752700 0t0 19670 /dev/log
syslog-ng 1904 root 187u unix 0xffff880049d30300 0t0 19672 /dev/log
syslog-ng 1904 root 188u unix 0xffff88004a7a8300 0t0 20526 /dev/log
syslog-ng 1904 root 189u unix 0xffff880049d88900 0t0 20528 /dev/log
syslog-ng 1904 root 190u unix 0xffff880049d88f00 0t0 20571 /dev/log
syslog-ng 1904 root 191u unix 0xffff880049d89b00 0t0 20573 /dev/log
syslog-ng 1904 root 192u unix 0xffff880049d31800 0t0 19834 /dev/log
syslog-ng 1904 root 193u unix 0xffff880049d32400 0t0 19836 /dev/log
syslog-ng 1904 root 194u unix 0xffff880049d8a700 0t0 20639 /dev/log
syslog-ng 1904 root 195u unix 0xffff880049d8b300 0t0 20641 /dev/log
syslog-ng 1904 root 196u unix 0xffff880049d33000 0t0 19969 /dev/log
syslog-ng 1904 root 197u unix 0xffff880049d33c00 0t0 19971 /dev/log
syslog-ng 1904 root 198u unix 0xffff880049d8a100 0t0 20679 /dev/log
syslog-ng 1904 root 199u unix 0xffff88004a7a8000 0t0 20681 /dev/log
syslog-ng 1904 root 200u unix 0xffff880049d30f00 0t0 20106 /dev/log
syslog-ng 1904 root 201u unix 0xffff880049d32700 0t0 20108 /dev/log
syslog-ng 1904 root 202u unix 0xffff880049f74300 0t0 20122 /dev/log
syslog-ng 1904 root 203u unix 0xffff880049f74f00 0t0 20124 /dev/log
syslog-ng 1904 root 204u unix 0xffff880049f75500 0t0 20230 /dev/log
syslog-ng 1904 root 205u unix 0xffff880049f76100 0t0 20232 /dev/log
syslog-ng 1904 root 206u unix 0xffff880049f76700 0t0 20247 /dev/log
syslog-ng 1904 root 207u unix 0xffff880049f77300 0t0 20249 /dev/log
syslog-ng 1904 root 208u unix 0xffff880049f77900 0t0 20267 /dev/log
syslog-ng 1904 root 209u unix 0xffff88004980c300 0t0 20269 /dev/log
syslog-ng 1904 root 210u unix 0xffff880049eda700 0t0 20926 /dev/log
syslog-ng 1904 root 211u unix 0xffff880049edb300 0t0 20928 /dev/log
syslog-ng 1904 root 212u unix 0xffff880049edb900 0t0 20946 /dev/log
syslog-ng 1904 root 213u unix 0xffff880049ed9b00 0t0 20948 /dev/log
syslog-ng 1904 root 214u unix 0xffff880049ed9500 0t0 20992 /dev/log
syslog-ng 1904 root 215u unix 0xffff880049ed8900 0t0 20994 /dev/log
syslog-ng 1904 root 216u unix 0xffff88004980e100 0t0 21537 /dev/log
syslog-ng 1904 root 217u unix 0xffff88004980ed00 0t0 21539 /dev/log
syslog-ng 1904 root 218u unix 0xffff880049ed8300 0t0 21030 /dev/log
syslog-ng 1904 root 219u unix 0xffff880049930900 0t0 21032 /dev/log
syslog-ng 1904 root 220u unix 0xffff88004980f900 0t0 21675 /dev/log
syslog-ng 1904 root 221u unix 0xffff88004980db00 0t0 21677 /dev/log
syslog-ng 1904 root 222u unix 0xffff880049931500 0t0 21099 /dev/log
syslog-ng 1904 root 223u unix 0xffff880049932100 0t0 21101 /dev/log
syslog-ng 1904 root 224u unix 0xffff880049932d00 0t0 21143 /dev/log
syslog-ng 1904 root 225u unix 0xffff880049933900 0t0 21145 /dev/log
syslog-ng 1904 root 226u unix 0xffff880049932400 0t0 21163 /dev/log
syslog-ng 1904 root 227u unix 0xffff880049ed8000 0t0 21165 /dev/log
syslog-ng 1904 root 228u unix 0xffff8800499b4300 0t0 21183 /dev/log
syslog-ng 1904 root 229u unix 0xffff8800499b4f00 0t0 21185 /dev/log
syslog-ng 1904 root 230u unix 0xffff88004980cc00 0t0 21948 /dev/log
syslog-ng 1904 root 231u unix 0xffff88004980d500 0t0 21950 /dev/log
syslog-ng 1904 root 232u unix 0xffff8800499b5b00 0t0 21278 /dev/log
syslog-ng 1904 root 233u unix 0xffff8800499b6700 0t0 21280 /dev/log
syslog-ng 1904 root 234u unix 0xffff8800499d4f00 0t0 21988 /dev/log
syslog-ng 1904 root 235u unix 0xffff8800499d5b00 0t0 21990 /dev/log
syslog-ng 1904 root 236u unix 0xffff8800499d6100 0t0 22095 /dev/log
syslog-ng 1904 root 237u unix 0xffff8800499d6d00 0t0 22097 /dev/log
syslog-ng 1904 root 238u unix 0xffff8800499d7300 0t0 22111 /dev/log
syslog-ng 1904 root 239u unix 0xffff8800499d4900 0t0 22113 /dev/log
syslog-ng 1904 root 240u unix 0xffff8800499d4300 0t0 22219 /dev/log
syslog-ng 1904 root 241u unix 0xffff880049494300 0t0 22221 /dev/log
syslog-ng 1904 root 242u unix 0xffff8800499b7600 0t0 21453 /dev/log
syslog-ng 1904 root 243u unix 0xffff8800499b6d00 0t0 21455 /dev/log
syslog-ng 1904 root 244u unix 0xffff880049494f00 0t0 22257 /dev/log
syslog-ng 1904 root 245u unix 0xffff880049495b00 0t0 22259 /dev/log
syslog-ng 1904 root 246u unix 0xffff880049496100 0t0 22368 /dev/log
syslog-ng 1904 root 247u unix 0xffff880049496d00 0t0 22370 /dev/log
syslog-ng 1904 root 248u unix 0xffff8800499b6a00 0t0 22577 /dev/log
syslog-ng 1904 root 249u unix 0xffff8800494d0900 0t0 22579 /dev/log
syslog-ng 1904 root 250u unix 0xffff8800494d0f00 0t0 22623 /dev/log
syslog-ng 1904 root 251u unix 0xffff8800494d1b00 0t0 22625 /dev/log
syslog-ng 1904 root 252u unix 0xffff8800494d2100 0t0 22643 /dev/log
syslog-ng 1904 root 253u unix 0xffff8800494d2d00 0t0 22645 /dev/log
syslog-ng 1904 root 254u unix 0xffff880049494900 0t0 23569 /dev/log
syslog-ng 1904 root 255u unix 0xffff880049497c00 0t0 23571 /dev/log
syslog-ng 1904 root 256u unix 0xffff8800495a8300 0t0 23682 /dev/log
syslog-ng 1904 root 257u unix 0xffff8800495a8f00 0t0 23684 /dev/log
syslog-ng 1904 root 258u unix 0xffff8800495a9500 0t0 23702 /dev/log
syslog-ng 1904 root 259u unix 0xffff8800495aa100 0t0 23704 /dev/log
syslog-ng 1904 root 260u unix 0xffff8800494d3600 0t0 22787 /dev/log
syslog-ng 1904 root 261u unix 0xffff8800499b5500 0t0 22789 /dev/log
syslog-ng 1904 root 262u unix 0xffff8800495aad00 0t0 23831 /dev/log
syslog-ng 1904 root 263u unix 0xffff8800495ab900 0t0 23833 /dev/log
syslog-ng 1904 root 264u unix 0xffff880049630900 0t0 22829 /dev/log
syslog-ng 1904 root 265u unix 0xffff880049631500 0t0 22831 /dev/log
syslog-ng 1904 root 266u unix 0xffff8800495abc00 0t0 23934 /dev/log
syslog-ng 1904 root 267u unix 0xffff8800496b8300 0t0 23936 /dev/log
syslog-ng 1904 root 268u unix 0xffff8800496b8900 0t0 23954 /dev/log
syslog-ng 1904 root 269u unix 0xffff8800496b9500 0t0 23956 /dev/log
syslog-ng 1904 root 270u unix 0xffff880049632700 0t0 22957 /dev/log
syslog-ng 1904 root 271u unix 0xffff880049633300 0t0 22959 /dev/log
syslog-ng 1904 root 272u unix 0xffff8800496ba100 0t0 24022 /dev/log
syslog-ng 1904 root 273u unix 0xffff8800496bad00 0t0 24024 /dev/log
syslog-ng 1904 root 274u unix 0xffff880049633600 0t0 23094 /dev/log
syslog-ng 1904 root 275u unix 0xffff880049631800 0t0 23096 /dev/log
|
It looks to me like there's a lot of garbage building up even in the early stages. |
|
Back to top |
|
|
BillWho Veteran
Joined: 03 Mar 2012 Posts: 1600 Location: US
|
Posted: Wed Sep 19, 2012 5:39 pm Post subject: |
|
|
NotExcessive.
You beat my output by a pretty good margin
Code: | xen dev # lsof -c syslog-ng|grep -v mem
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
syslog-ng 1874 root cwd DIR 8,5 4096 2 /
syslog-ng 1874 root rtd DIR 8,5 4096 2 /
syslog-ng 1874 root txt REG 8,5 19360 430738 /usr/sbin/syslog-ng
syslog-ng 1874 root 0r CHR 1,3 0t0 3076 /dev/null
syslog-ng 1874 root 1w CHR 1,3 0t0 3076 /dev/null
syslog-ng 1874 root 2w CHR 1,3 0t0 3076 /dev/null
syslog-ng 1875 root cwd DIR 0,14 420 2058 /run
syslog-ng 1875 root rtd DIR 8,5 4096 2 /
syslog-ng 1875 root txt REG 8,5 19360 430738 /usr/sbin/syslog-ng
syslog-ng 1875 root 0r CHR 1,3 0t0 3076 /dev/null
syslog-ng 1875 root 1w CHR 1,3 0t0 3076 /dev/null
syslog-ng 1875 root 2w CHR 1,3 0t0 3076 /dev/null
syslog-ng 1875 root 3u REG 8,5 16384 299528 /var/lib/misc/syslog-ng.persist
syslog-ng 1875 root 4w FIFO 0,8 0t0 4035 pipe
syslog-ng 1875 root 5u unix 0xffff88011ad64d00 0t0 4039 /var/run/syslog-ng.ctl
syslog-ng 1875 root 6u unix 0xffff88011ad67740 0t0 4036 /dev/log
syslog-ng 1875 root 7r REG 0,3 0 4026532043 /proc/kmsg
syslog-ng 1875 root 8w REG 8,5 344361 286754 /var/log/messages
syslog-ng 1875 root 9w CHR 4,12 0t0 3102 /dev/tty12
syslog-ng 1875 root 10u unix 0xffff880117eb23c0 0t0 5823 /dev/log
syslog-ng 1875 root 11u unix 0xffff880117eb16c0 0t0 2869 /dev/log
syslog-ng 1875 root 12u unix 0xffff880117d4aa40 0t0 5882 /dev/log
syslog-ng 1875 root 13u unix 0xffff880117d496c0 0t0 5924 /dev/log
syslog-ng 1875 root 14u unix 0xffff88011a5ce080 0t0 5934 /dev/log
syslog-ng 1875 root 15u unix 0xffff88011922e080 0t0 8222 /dev/log
syslog-ng 1875 root 16u unix 0xffff88011a5716c0 0t0 4004525 /dev/log
|
It's been running for close to six hours - had power failures here due to storms in the area
It's evident that /dev/log is being heavily utilized so try monitoring it in a term with Code: | watch -d fuser -vm /dev/log |
to get a better idea of what's going on. _________________ Good luck
Since installing gentoo, my life has become one long emerge |
|
Back to top |
|
|
NotExcessive Apprentice
Joined: 10 May 2005 Posts: 235
|
Posted: Sun Sep 30, 2012 12:45 am Post subject: |
|
|
This probably won't be of much use:
Code: | gatekeeper ~ # watch -d fuser -vm /dev/log |less
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
(unknown) F.... ???
|
|
|
Back to top |
|
|
BillWho Veteran
Joined: 03 Mar 2012 Posts: 1600 Location: US
|
Posted: Sun Sep 30, 2012 3:05 am Post subject: |
|
|
NotExcessive,
Never saw (unknown) accessing the log before
This is crude, but check all the processes in /proc for any suspicious names.
Code: | find /proc/* -maxdepth 1 -name status -exec grep "Name:" {} + |
_________________ Good luck
Since installing gentoo, my life has become one long emerge |
|
Back to top |
|
|
BillWho Veteran
Joined: 03 Mar 2012 Posts: 1600 Location: US
|
Posted: Sun Sep 30, 2012 3:06 am Post subject: |
|
|
NotExcessive,
Never saw (unknown) accessing the log before
This is crude, but check all the processes in /proc for any suspicious names.
Code: | find /proc/* -maxdepth 1 -name status -exec grep "Name:" {} + |
_________________ Good luck
Since installing gentoo, my life has become one long emerge |
|
Back to top |
|
|
|
|
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
|