02-20-2012
Thanks for the note.
The messages are coming from ssh not from console. I get them and the users too.
There is SAP and I believe oracle too.
The *.emerg is commented out in the /etc/rsyslog.conf/rpmsave
I believe we maybe using a custom syslog program that is the one creating those messages.
I found this:
@version:3.2
# syslog-ng configuration file.
#
# This should behave pretty much like the original syslog on RedHat. But
# it could be configured a lot smarter.
#
# See syslog-ng(8) and syslog-ng.conf(5) for more information.
#
options {
flush_lines (0);
time_reopen (10);
log_fifo_size (1000);
long_hostnames (off);
use_dns (no);
use_fqdn (no);
create_dirs (no);
keep_hostname (yes);
};
source s_sys {
file ("/proc/kmsg" program_override("kernel: "));
unix-stream ("/dev/log");
internal();
# udp(ip(0.0.0.0) port(514));
};
destination d_cons { file("/dev/console"); };
destination d_mesg { file("/var/log/messages"); };
destination d_auth { file("/var/log/secure"); };
destination d_mail { file("/var/log/maillog" flush_lines(10)); };
destination d_spol { file("/var/log/spooler"); };
destination d_boot { file("/var/log/boot.log"); };
destination d_cron { file("/var/log/cron"); };
destination d_kern { file("/var/log/kern"); };
destination d_mlal { usertty("*"); };
# Some default filters require modification for DBA
filter f_kernel { facility(kern); };
filter f_default { level(info..emerg) and
not (facility(mail)
or facility(authpriv)
"syslog-ng.conf" [readonly] 111L, 4757C
9 More Discussions You Might Find Interesting
1. Filesystems, Disks and Memory
Am having trouble trying to stop the process below ...
bash# ps -eaf | grep "tape erase"
root 29715 1 0 05:16:22 ttyp1 00:00:00 tape erase /dev/rStp0
root 22464 20933 1 03:40:12 ttyp6 00:00:00 grep tape eraseI've tried ... `kill -9 29715` ... but still no luck.
Help... (8 Replies)
Discussion started by: Cameron
8 Replies
2. SCO
i hit ping to ping a server, and it keeps going.
how do you stop it? ctrl Z, D, C, nothing works. (2 Replies)
Discussion started by: BG_JrAdmin
2 Replies
3. UNIX for Advanced & Expert Users
Hi ,
I have one question, suppose i am a normal user and when i use 'w' command , it shows who is logged on and what they are doing .
Now i want to stop others users to know what i am doing accept the root ?
can i do this ?
thanks (5 Replies)
Discussion started by: mobile01
5 Replies
4. UNIX for Advanced & Expert Users
Hello,
I am hosting a site that someone is bouncing a huge amount of spam off of and I have not been able to find what file they are using to abuse my server.
Short of terminating the account and telling my customer to take a hike I am hoping someone can help me find the file that is being... (1 Reply)
Discussion started by: dorpan
1 Replies
5. Solaris
Hi,
I have replaced my current Intel PC machine with Solaris 10, it use to have windows XP.
I am sure alot of people already done this and i have seen Solaris running smoothly but having keyboard problem.
What is the equal keys in a QWERTY keyboard for selection <Stop+A> ?
Is there a... (5 Replies)
Discussion started by: tlee
5 Replies
6. AIX
Dears all
i have an AIX box in which i am facing a problem with a process as below:
/usr/dt/bin/dtexec -open 0 -ttprocid
and each time i am killing this process with "kill -9" then it run again after a while.
any ideas or solutions will be appreciated. (13 Replies)
Discussion started by: TheEngineer
13 Replies
7. UNIX for Dummies Questions & Answers
Hi All,
I am running parallel process as they all run the same JOBS and only thing which changes is the argument which ia passed.
I am doing it as follows
script.sh $1 &
script.sh $2 &
script.sh $3 &..
and so on.
Now each process has same set of JOBS which are to be executed. Now say... (1 Reply)
Discussion started by: Prashantckc
1 Replies
8. Solaris
I am using solaris x86 with a pc keyboard. i am trying to get to the ok prompt i have tried ctrl-break but it is not working , alt-break will not as well.
pls any thought? (4 Replies)
Discussion started by: seyiisq
4 Replies
9. UNIX for Dummies Questions & Answers
I have the following log file running since yesterday and its consuming so much of the disk space.
-rw-rw-r-- 1 dev dba 4543237120 Nov 10 09:00 load_run_file1_0.1111091224.lg
How do i kill this process. I don't have any idea of stopping this. Any help would be really appreciated.
... (3 Replies)
Discussion started by: bobby1015
3 Replies
LEARN ABOUT SUSE
set_session_authorization
SET SESSION
AUTHORIZATION(7) SQL Commands SET SESSION AUTHORIZATION(7)
NAME
SET SESSION AUTHORIZATION - set the session user identifier and the current user identifier of the current session
SYNOPSIS
SET [ SESSION | LOCAL ] SESSION AUTHORIZATION username
SET [ SESSION | LOCAL ] SESSION AUTHORIZATION DEFAULT
RESET SESSION AUTHORIZATION
DESCRIPTION
This command sets the session user identifier and the current user identifier of the current SQL session to be username. The user name can
be written as either an identifier or a string literal. Using this command, it is possible, for example, to temporarily become an unprivi-
leged user and later switch back to being a superuser.
The session user identifier is initially set to be the (possibly authenticated) user name provided by the client. The current user identi-
fier is normally equal to the session user identifier, but might change temporarily in the context of SECURITY DEFINER functions and simi-
lar mechanisms; it can also be changed by SET ROLE [set_role(7)]. The current user identifier is relevant for permission checking.
The session user identifier can be changed only if the initial session user (the authenticated user) had the superuser privilege. Other-
wise, the command is accepted only if it specifies the authenticated user name.
The SESSION and LOCAL modifiers act the same as for the regular SET [set(7)] command.
The DEFAULT and RESET forms reset the session and current user identifiers to be the originally authenticated user name. These forms can be
executed by any user.
NOTES
SET SESSION AUTHORIZATION cannot be used within a SECURITY DEFINER function.
EXAMPLES
SELECT SESSION_USER, CURRENT_USER;
session_user | current_user
--------------+--------------
peter | peter
SET SESSION AUTHORIZATION 'paul';
SELECT SESSION_USER, CURRENT_USER;
session_user | current_user
--------------+--------------
paul | paul
COMPATIBILITY
The SQL standard allows some other expressions to appear in place of the literal username, but these options are not important in practice.
PostgreSQL allows identifier syntax ("username"), which SQL does not. SQL does not allow this command during a transaction; PostgreSQL does
not make this restriction because there is no reason to. The SESSION and LOCAL modifiers are a PostgreSQL extension, as is the RESET syn-
tax.
The privileges necessary to execute this command are left implementation-defined by the standard.
SEE ALSO
SET ROLE [set_role(7)]
SQL - Language Statements 2010-05-14 SET SESSION AUTHORIZATION(7)