All, i am receiving numerous entries for programs such as snmpd in my messages file. Is there a way to add a rule somewhere to have these and other annoying unimportant entries go to /dev/null or something?
I tried adding an entry to /etc/syslog.conf, but that hosed any logging into the messages file, so maybe i added it wrong?
I want to try and do this with out installing anything additional.
I have six linux Centos 5.0 Servers. I had to configure the snmp client. I just created a pretty basic configuration snmpd.conf file
Code: rocommunity CompanyCom 10.1.1.10
I installed all of these
lm_sensors-2.10.7-4.el5.i386.rpm
net-snmp-libs-5.3.2.2-7.el5.i386.rpm
net-snmp-5.3.2.2-7.el5.i386.rpm
net-snmp-utils-5.3.2.2-7.el5.i386.rpm
4 of them are working fine, the application installed on 10.1.1.10 can query 4 servers but I got 2 Linux Centos that are in a DMZ, and my networking team already opened ports and configured NAT but the SNMP Server 10.1.1.10 is not able to query them how can I check the snmpd is really running apart from service snmpd status? might be related with the DMZ configuration?
I have a batch job which logs in to the server every 10 minutes via windows rsh. The job checks to see is there are any files that need to be send via a EDI serverto a supplier.The following logwatch report is swamped with the login messages and would like to either suppress the logging in PAM? or suppress the entry in the logwatch report?But I still want logging id the username is not username1.Connections (secure-log) Begin rshd[1754]: pam_rhosts_auth(rsh:auth): allowed to username1@10.0.0.1 as myedi
View 2 Replies View RelatedGNOME has adopted the pulseaudio infrastructure and it has grave errors reading from ALSA sinks. One of the many effects is that every 2 or 3 seconds a 3 line error message is written to the syslog to the effect of 'ALSA woke us up...blah blah blah' and it is filling up everyone's syslog. What I need is a workaround to just stop these messages from being written so I can level set and figure out a long term course of action.
View 2 Replies View RelatedI'm setting up a logging script to track utilization on our deployed systems. I'm running it every minute using cron. Each time it runs, I get an entry in /var/log/messages telling me it ran. That is a lot of useless information. Is there a way to prevent the creation of these log entries?
View 1 Replies View RelatedWe have MS Exchange email server with postfix/amavis on FreeBSD as proxy for anti-spam and anti-virus. We use our own developed CRM and trying to implement such functionality that when CRM manager send email to CRM client or vice versa through email client like Outlook (no plugins for CRM) this message would be shown in CRM. There is already a solution to parse emails from specific emailbox and show it in CRM.
What I need is to create postfix email filter to check if sender email is in file CRM_managers_emails and recipient email is in file CRM_clients_emails then forward that email to [URL] Filter should check both incoming and outgoing messages. I will auto generate CRM_managers_emails and CRM_clients_email files containing all such emails taken from CRM database. I know i should use something like Postfix After-Queue Content Filter but most of examples are for blocking emails.
I m trying to find an answer for this matter. I have download the SNMP version which I am concerned due to the following problems. I am trying to configure the SNMPD.conf and I cannod find any tutorial on the internet.
I downloaded the following product.
Linux version :
Linux version 2.6.18 (root@srv03) (gcc version 3.3.6) #1 SMP Sat Sep 23 19:32:53 BRT 2006
SNMP
net-snmp-5.4.2.1-i486-1_slack12.0.tgz
when I run the command snmpd I have the following problems
root@srv03:~# snmpd
snmpd: /lib/libc.so.6: version `GLIBC_2.4' not found (required by snmpd)
I dont know how to configure the SNMPD.conf there is anyway
I am working on Red Hat Linux since last six months and learning it steps by steps. like configurating ftp server,NSF ,DNS and then email server. I want to learn squid server but technically before going into it what you suggest me that may I first learn to configure Linux as a router,Firewall machine or do IP masquerading on a server. Because all these things are directly or indirectly involve in squid.So guide me because going to start squid i may understand Linux IP table ,how to add entries in it,how to delete entries ,I think you understand my point which i want to ask for guidence.
View 4 Replies View RelatedI would like to know if what this log error mean and how i can resolve this matter. I would like to verify if this is a misconfiguration or a bug on my settings
the log error is:
snmpd:error parsing ', skipping
the RHEL version used was 4 update 4 64 bit
the snmp packages installed were:
net-snmp-5.2.1-0.2
net snmp-lib - 5.1.2-11
net-snmp-lib - 5.2.1-0.2
I am using the "extend" function of snmpd to run a script in order to extend a monitoring platform. This script being ran by snmpd needs to write to a file in /tmp for later parsing, but SELinux is stopping it from writing to the file under /tmp. The following two lines from my audit.log file show what is happening:
Code:
type=AVC msg=audit(1281516573.123:18422): avc: denied { write } for pid=6933 comm="test2.sh" name="tmp" dev=dm-0 ino=1474561 scontext=root:system_r:snmpd_t:s0 tcontext=system_u:object_r:tmp_t:s0 tclass=dir
[Code]..
I want to find the mib files where the OIDs used in snmpd are. Where can I find those mib files?
View 1 Replies View RelatedWhen building 8.04 servers, I reconfigure snmpd's logging options to prevent copious low priority messages being logged whenever our network management workstation polls them. I edit /etc/default/snmpd and change line 11 from:
Code:
SNMPDOPTS='-Lsd -Lf /dev/null ...'
to:
[code]....
I'm really new to Linux and I badly needed some help.
I can't find the possible cause of this error log:
snmpd: error parsing '', skipping
RHEL version: RHEL4 ES Update 4 64-bit
version of snmp packages installed : net-snmp-5.2.1-0.2, net-snmp-libs-5.1.2-11, net-snmp-libs-5.2.1-0.2
My Objective is to add Private MIB and compile that file and perform snmpget and snmpset operation. My MIb file contain this macro
[Code]...
Next I try to cmpile using mib2c highCpuUsage. it's give template code for that. I read all the tutorial and copy in /mibgroup and restart snmpd service and try snmpwalk ,snmpset but it�s not work and in var/log/messages its give Out of Memory: Killed process 8005 (snmpd)
I am trying to figure out how to write an awk script(or something better if it exists) to read a text file that contains lines like below.
4517-s-1295546289-10:58:09-2011-01-20.wav | 19990 KiB | 2940.5 KiB/s | binary | 100%
4517-s-1303247233-15:07:13-2011-04-19.wav | 167 KiB | 2918.3 KiB/s | binary | 100%
4517-s-1301431748-14:49:08-2011-03-29.wav | 36220 KiB | 2589.3 KiB/s | binary | 100%
[code]....
I have a syslog-ng running and kernel build of 2.6.34.8 I use a syslog API in my program with facility LOG_LOCAL5 and and levels debug err and crit and info. when I ran on the older syslog facility I had everything logged fine as I intended. now I have written these rules into the syslog-ng.conf:
options {
flush_lines (0);
time_reopen (10);
log_fifo_size (1000);
[code]....
the last two rules show my program gnssapp. the result is all debug levels or crit or err levels I don't see any of them !
I'm trying to understand rsync filters .. but it isn't goig to well.I want to rsync only files with a specific extension (.gz.des3). Could someone please tell me how to add such filter to the rsync commandline (not a seperate filter filer).
View 2 Replies View RelatedIn linux, I can grep a string from a file using grep mySearchString myFile.txt.
How can I only get the result which are unique?
I have the following command that I run on cygwin:
find /cygdrive/d/tmp/* -maxdepth 0 -mtime -150 -type d | xargs du --max-depth=0 > foldersizesreport.csv
I intended to do the following with this command: for each folder under /d/tmp/ that was modified in last 150 days, check its total size including files within it and report it to file foldersizesreport.csv however that is now not good enough for me, as it turns out inside each
/d/tmp/subfolder1/somefile.properties
/d/tmp/subfolder2/somefile.properties
/d/tmp/subfolder3/somefile.properties
/d/tmp/subfolder4/somefile.properties
so as you see inside each subfolderX there is a file named somefile.properties inside it there is a property SOMEPROPKEY=3808612800100 (among other properties) this is the time in millisecond, i need to change the command so that instead of -mtime -150 it will include in the whole calculation only subfolderX that has a file inside them somefile.properties where the SOMEPROPKEY=3808612800100 is the time in millisecond in future, if the value SOMEPROPKEY=23948948 is in past then dont at all include the folderin the foldersizesreport.csv because its not relevant to me.so the result report should be looking like:
/d/tmp/,subfolder1,<itssizein KB>
/d/tmp/,subfolder2,<itssizein KB>
and if subfolder3 had a SOMEPROPKEY=34243234 (time in ms in past) then it would not be in that csv file.so basically I'm looking for:
find /cygdrive/d/tmp/* -maxdepth 0 -mtime -150 -type d | <only subfolders that have in them property in file SOMEPROPKEY=28374874827 - time in ms in future and not in past | xargs du --max-depth=0 > foldersizesreport.csv
I'm building my first BASH programs and I have a hard time. I can't do a search in a folder and filter only script files without extension, the problem is to differentiate the script files from the others. I tried with ls I tried with find and i don't find a way to make it work.
View 8 Replies View RelatedI would like to know how to use grep command to filter the log files created between 3:00 PM to 4:30 PM in buch of log for whole day in different headings. This files resembles like sar file in linux.
View 5 Replies View RelatedI am trying to list all traffic from 1 IP address but filter out port 1057.I keep getting syntax errors. I've tried:
Code:
ngrep -e host xx.xx.xxx.170 not port 1057
ngrep -e port 1057 -x host xx.xx.xxx.170
ngrep -e not port 1057 -x host xx.xx.xxx.170
etc.
I want to filter and block failed attempt to access my proftp server. Here are few line from the /var/log/secure file:Quote:
Jan 2 18:38:25 server1 proftpd[17847]: server1.XYZ.com (93.218.93.95[93.218.93.95]) - Maximum login attempts (3) exceeded
Jan 2 18:38:27 server1 proftpd[17864]: server1.XYZ.com (93.218.93.95[93.218.93.95]) -
[code]....
I'm using Ubuntu 9.10 (karmic). And, my ~/.pam_environment looks like the following.
PATH DEFAULT=${PATH}:~/Adobe/Reader9/bin:~/texlive/2009/bin/x86_64-linux
GIT_EDITOR DEFAULT=vim
MANPATH DEFAULT=${MANPATH}:~/texlive/2009/texmf/doc/man
INFOPATH DEFAULT=${INFOPATH}:~/texlive/2009/texmf/doc/info
But, echo $PATH returns me duplicated entries as the following.
/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:~/Adobe/Reader9/bin:~/texlive/2009/bin/x86_64-linux:~/Adobe/Reader9/bin:~/texlive/2009/bin/x86_64-linux
I've tried replacing DEFAULT by OVERRIDE in my ~/.pam_environment file. But, that didn't help.
I'm running OS X and it appears that after SSHing to several machines, using identity files, my ssh-agent builds up a lot of identity / keys and then offers too many sometimes to a remote machines, causing them to kick me off before connecting.
Received disconnect from 10.12.10.16: 2: Too many authentication failures for cwd
It's pretty obvious what's happening, and this page talks about it in more detail:
SSH servers only allow you to attempt to authenticate a certain number of times. Each failed password attempt, each failed pubkey/identity that is offered, etc, take up one of these attempts. If you have a lot of SSH keys in your agent, you may find that an SSH server may kick you out before allowing you to attempt password authentication at all. If this is the case, there are a few different workarounds.
Rebooting clears the agent and then everything works OK again. I can also add this line to my .ssh/config file to force it to use password authentication:
PreferredAuthentications keyboard-interactive,password
Anyhow, I saw the note on the page I referenced talking about deleting keys from the agent, but I'm not sure if that applies on a mac since they appear to be cleared after reboot anyhow. So, my question is, is there a simple way to clear out all keys in the ssh-agent (the same thing that happens at reboot)?
Broadcast Accounts...' and 'Ubuntu One...' from under the username menu on the top panel So it went from Screenshot2.jpg to Screenshot.jpg. (The first screenshot is from my laptop which works perfectly - just to demonstrate what I want my desktop (on the right) to look like)I have no idea how I did it, but have spent all day trying to get the buttons back, downloading many applications (and learning a lot about customising gnome!) but to no availEDIT: I've also noticed that the 'Synchronize on Ubuntu One' option when you right click on files and folders does not exist on the desktop pc
View 1 Replies View RelatedAfter adding what I thought were the correct entries in /etc/sudoers so I'd be able to run commands without needing to sudo them, I keep having to. My sudoers file entries look like this:
Code:
## Allow root to run any commands anywhere
root ALL=(ALL) ALL
user_me ALL=(ALL) ALL
## Allows people in group wheel to run all commands
%wheel ALL=(ALL) ALL
user_me ALL=(ALL) ALL
## Same thing without a password
%wheel ALL=(ALL) NOPASSWD: ALL
user_me ALL=(ALL) NOPASSWD: ALL
I have also confirmed that I'm a member of the wheel group in /etc/group:
Code:
wheel:x:10:root,user_me
And yet, I still have to sudo to do pretty much anything.
I want to edit the Main menu to regroup the applications, and change the paths of some of them.. I have done some yum install and remove, but the entries in the main menu are still present.=
View 3 Replies View RelatedMore than 7 G bytes were logged to the messages file last three weeks I got this message in /var/log/messages I want to stop this messaging cause it takes to much space
Quote:
Apr 30 20:25:18 TEST-NODE kernel: IPT: IN_NOMATCH IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:00:17:a4:a7:3d:a2:08:00 SRC=172.26.16.27 DST=172.26.16.255 LEN=104 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=10100 DPT=10100 LEN=84
[code]...
It is needed because of my portable audio player does not order entries and just leaves it as in FAT directory.
Current way of handling this is only moving files around and re-creating directories and placing files there in correct order (keeping in mind where are "holes" in directory list that will be filled by new file in placed to that directory).
What is the more proper way of doing it? (Apart from re-creating all directories each time or using hex editor on disk).