Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How can I stop this???
Operating Systems Linux Red Hat How can I stop this??? Post 302600322 by 300zxmuro on Monday 20th of February 2012 08:44:38 PM
Old 02-20-2012
Thanks for the note.

The messages are coming from ssh not from console. I get them and the users too.

There is SAP and I believe oracle too.

The *.emerg is commented out in the /etc/rsyslog.conf/rpmsave

I believe we maybe using a custom syslog program that is the one creating those messages.

I found this:

@version:3.2
# syslog-ng configuration file.
#
# This should behave pretty much like the original syslog on RedHat. But
# it could be configured a lot smarter.
#
# See syslog-ng(8) and syslog-ng.conf(5) for more information.
#
options {
flush_lines (0);
time_reopen (10);
log_fifo_size (1000);
long_hostnames (off);
use_dns (no);
use_fqdn (no);
create_dirs (no);
keep_hostname (yes);
};
source s_sys {
file ("/proc/kmsg" program_override("kernel: "));
unix-stream ("/dev/log");
internal();
# udp(ip(0.0.0.0) port(514));
};
destination d_cons { file("/dev/console"); };
destination d_mesg { file("/var/log/messages"); };
destination d_auth { file("/var/log/secure"); };
destination d_mail { file("/var/log/maillog" flush_lines(10)); };
destination d_spol { file("/var/log/spooler"); };
destination d_boot { file("/var/log/boot.log"); };
destination d_cron { file("/var/log/cron"); };
destination d_kern { file("/var/log/kern"); };
destination d_mlal { usertty("*"); };
# Some default filters require modification for DBA
filter f_kernel { facility(kern); };
filter f_default { level(info..emerg) and
not (facility(mail)
or facility(authpriv)
"syslog-ng.conf" [readonly] 111L, 4757C
 

9 More Discussions You Might Find Interesting

1. Filesystems, Disks and Memory

How do I stop this???

Am having trouble trying to stop the process below ... bash# ps -eaf | grep "tape erase" root 29715 1 0 05:16:22 ttyp1 00:00:00 tape erase /dev/rStp0 root 22464 20933 1 03:40:12 ttyp6 00:00:00 grep tape eraseI've tried ... `kill -9 29715` ... but still no luck. Help... (8 Replies)
Discussion started by: Cameron
8 Replies

2. SCO

stop commands

i hit ping to ping a server, and it keeps going. how do you stop it? ctrl Z, D, C, nothing works. (2 Replies)
Discussion started by: BG_JrAdmin
2 Replies

3. UNIX for Advanced & Expert Users

how to stop others users to stop viewing what i am doing ?

Hi , I have one question, suppose i am a normal user and when i use 'w' command , it shows who is logged on and what they are doing . Now i want to stop others users to know what i am doing accept the root ? can i do this ? thanks (5 Replies)
Discussion started by: mobile01
5 Replies

4. UNIX for Advanced & Expert Users

help me stop spammer

Hello, I am hosting a site that someone is bouncing a huge amount of spam off of and I have not been able to find what file they are using to abuse my server. Short of terminating the account and telling my customer to take a hike I am hoping someone can help me find the file that is being... (1 Reply)
Discussion started by: dorpan
1 Replies

5. Solaris

Stop+A equal

Hi, I have replaced my current Intel PC machine with Solaris 10, it use to have windows XP. I am sure alot of people already done this and i have seen Solaris running smoothly but having keyboard problem. What is the equal keys in a QWERTY keyboard for selection <Stop+A> ? Is there a... (5 Replies)
Discussion started by: tlee
5 Replies

6. AIX

a process that never stop

Dears all i have an AIX box in which i am facing a problem with a process as below: /usr/dt/bin/dtexec -open 0 -ttprocid and each time i am killing this process with "kill -9" then it run again after a while. any ideas or solutions will be appreciated. (13 Replies)
Discussion started by: TheEngineer
13 Replies

7. UNIX for Dummies Questions & Answers

To Stop at error

Hi All, I am running parallel process as they all run the same JOBS and only thing which changes is the argument which ia passed. I am doing it as follows script.sh $1 & script.sh $2 & script.sh $3 &.. and so on. Now each process has same set of JOBS which are to be executed. Now say... (1 Reply)
Discussion started by: Prashantckc
1 Replies

8. Solaris

stop - A

I am using solaris x86 with a pc keyboard. i am trying to get to the ok prompt i have tried ctrl-break but it is not working , alt-break will not as well. pls any thought? (4 Replies)
Discussion started by: seyiisq
4 Replies

9. UNIX for Dummies Questions & Answers

Stop the process

I have the following log file running since yesterday and its consuming so much of the disk space. -rw-rw-r-- 1 dev dba 4543237120 Nov 10 09:00 load_run_file1_0.1111091224.lg How do i kill this process. I don't have any idea of stopping this. Any help would be really appreciated. ... (3 Replies)
Discussion started by: bobby1015
3 Replies

LEARN ABOUT SUSE

set_session_authorization

SET SESSION 
AUTHORIZATION(7)					   SQL Commands 				      SET SESSION AUTHORIZATION(7)

NAME

       SET SESSION AUTHORIZATION - set the session user identifier and the current user identifier of the current session

SYNOPSIS

       SET [ SESSION | LOCAL ] SESSION AUTHORIZATION username
       SET [ SESSION | LOCAL ] SESSION AUTHORIZATION DEFAULT
       RESET SESSION AUTHORIZATION

DESCRIPTION

       This  command sets the session user identifier and the current user identifier of the current SQL session to be username. The user name can
       be written as either an identifier or a string literal. Using this command, it is possible, for example, to temporarily become an  unprivi-
       leged user and later switch back to being a superuser.

       The  session user identifier is initially set to be the (possibly authenticated) user name provided by the client. The current user identi-
       fier is normally equal to the session user identifier, but might change temporarily in the context of SECURITY DEFINER functions and  simi-
       lar mechanisms; it can also be changed by SET ROLE [set_role(7)].  The current user identifier is relevant for permission checking.

       The  session  user  identifier can be changed only if the initial session user (the authenticated user) had the superuser privilege. Other-
       wise, the command is accepted only if it specifies the authenticated user name.

       The SESSION and LOCAL modifiers act the same as for the regular SET [set(7)] command.

       The DEFAULT and RESET forms reset the session and current user identifiers to be the originally authenticated user name. These forms can be
       executed by any user.

NOTES

       SET SESSION AUTHORIZATION cannot be used within a SECURITY DEFINER function.

EXAMPLES

       SELECT SESSION_USER, CURRENT_USER;

	session_user | current_user
       --------------+--------------
	peter	     | peter

       SET SESSION AUTHORIZATION 'paul';

       SELECT SESSION_USER, CURRENT_USER;

	session_user | current_user
       --------------+--------------
	paul	     | paul

COMPATIBILITY

       The SQL standard allows some other expressions to appear in place of the literal username, but these options are not important in practice.
       PostgreSQL allows identifier syntax ("username"), which SQL does not. SQL does not allow this command during a transaction; PostgreSQL does
       not  make this restriction because there is no reason to.  The SESSION and LOCAL modifiers are a PostgreSQL extension, as is the RESET syn-
       tax.

       The privileges necessary to execute this command are left implementation-defined by the standard.

SEE ALSO

       SET ROLE [set_role(7)]

SQL - Language Statements					    2010-05-14					      SET SESSION AUTHORIZATION(7)
All times are GMT -4. The time now is 11:59 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy