From owner-freebsd-hackers Mon Nov 13 12: 3:55 2000 Delivered-To: freebsd-hackers@freebsd.org Received: from krell.webweaver.net (krell.webweaver.net [206.24.105.170]) by hub.freebsd.org (Postfix) with ESMTP id 016ED37B479 for ; Mon, 13 Nov 2000 12:03:50 -0800 (PST) Received: from xwin.nmhtech.com (xwin.nmhtech.com [208.138.46.10]) by krell.webweaver.net (Postfix) with ESMTP id C811920F10; Mon, 13 Nov 2000 11:49:13 -0800 (PST) Content-Length: 5162 Message-ID: X-Mailer: XFMail 1.4.0 on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: Date: Mon, 13 Nov 2000 12:03:49 -0700 (PST) From: Nicole To: Nicole H Subject: Re: Log analysis program running under apache reboots server! Cc: freebsd-hackers@FreeBSD.ORG, "Brian O'Shea" Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 13-Nov-00 Nicole H wrote: > > On 13-Nov-00 Brian O'Shea wrote: >> Nicole, >> >> Is it a panic, or does it just silently reboot? If it's a panic, >> what is the panic message, or any other message on the console when >> the system crashes? Also, can you get a crash dump? (see the >> dumpon(8) man page) >> >> -brian >> > > Silent reboot :( I hate to respond to my own message.. But the server is remote.. But there is nothing in the logs afterwards.. and nothing appears on the screen when it occurs. Nicole > > > Nicole > > >> >> On Mon, Nov 13, 2000 at 10:58:39AM -0800, Nicole Harrington wrote: >>> Greetings all.. >>> >>> I have been trying to test an apache log analizing program called >>> Nettracker >>> (wwww.sane.com) the program seems nice except for the fact that it keeps >>> rebooting/crashing the server. This would just be labeled crappy software >>> except for the fact that I am running the software as user apache and have >>> setup process limits in login.conf and it is still able to reboot the >>> server. >>> >>> This seems like a real problem and security issue as I have setup limits >>> in >>> /etc/login.conf (see below) and the program is being run via CGI as user >>> apache, yet it is still capable of rebooting the system. Seems like a nice >>> hack >>> to me. >>> >>> If anyone could check over my login.conf settings below and make sure >>> they >>> are >>> correct/ truly usefull, I would really appreciate it! Also any information >>> on >>> how this program could so easily reboot the server would be nice too. >>> >>> Thanks!! >>> >>> >>> Nicole >>> >>> System is 4.1-STABLE and has 256 Megs of memory and 4X that of swap. >>> >>> apacheuser:\ >>> :manpath=/usr/share/man /usr/X11R6/man /usr/local/man:\ >>> :cputime=4h:\ >>> :datasize=64M:\ >>> :stacksize=4M:\ >>> :filesize=infinity:\ >>> :memoryuse=64M:\ >>> :priority=0:\ >>> :datasize-cur=32M:\ >>> :stacksize-cur=32M:\ >>> :coredumpsize-cur=0:\ >>> :maxmemorysize-cur=64M:\ >>> :memorylocked=32M:\ >>> :maxproc=128:\ >>> :openfiles=256:\ >>> :tc=standard: >>> >>> ## standard - standard user defaults >>> ## >>> standard:\ >>> :copyright=/etc/COPYRIGHT:\ >>> :welcome=/etc/motd:\ >>> :setenv=MAIL=/var/mail/$,BLOCKSIZE=K:\ >>> :path=~/bin /bin /usr/bin /usr/local/bin:\ >>> :manpath=/usr/share/man /usr/local/man:\ >>> :nologin=/var/run/nologin:\ >>> :cputime=1h30m:\ >>> :datasize=8M:\ >>> :stacksize=2M:\ >>> :memorylocked=4M:\ >>> :memoryuse=8M:\ >>> :filesize=8M:\ >>> :coredumpsize=8M:\ >>> :openfiles=24:\ >>> :maxproc=32:\ >>> :priority=0:\ >>> :requirehome:\ >>> :passwordtime=90d:\ >>> :umask=002:\ >>> :ignoretime@:\ >>> :tc=default: >>> >>> default:\ >>> :cputime=infinity:\ >>> :datasize-cur=22M:\ >>> :stacksize-cur=8M:\ >>> :memorylocked-cur=10M:\ >>> :memoryuse-cur=30M:\ >>> :filesize=infinity:\ >>> :coredumpsize=infinity:\ >>> :maxproc-cur=64:\ >>> :openfiles-cur=64:\ >>> :priority=0:\ >>> :requirehome@:\ >>> :umask=022:\ >>> >>> >>> >>> >>> >>> To Unsubscribe: send mail to majordomo@FreeBSD.org >>> with "unsubscribe freebsd-hackers" in the body of the message >> >> -- >> Brian O'Shea >> boshea@ricochet.net >> >> >> To Unsubscribe: send mail to majordomo@FreeBSD.org >> with "unsubscribe freebsd-hackers" in the body of the message > > nicole@unixgirl.com |\ __ /| (`\ http://www.unixgirl.com/ > webmistress@dangermouse.org | o_o |__ ) ) http://www.dangermouse.org/ > nicole@deviantimages.com // \\ http://www.deviantimages.com/ > > ---------------------------(((---(((----------------------------------------- > > -- Powered by Coka-Cola and FreeBSD -- > -- Strong as any man - made for a Woman -- > -- "I drank WHAT ?!" - Socrates -- > Hmm You seem better - "been giving myself shock treatments" Up the Voltage! > ----------------------------------------------------------------------------- > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message nicole@unixgirl.com |\ __ /| (`\ http://www.unixgirl.com/ webmistress@dangermouse.org | o_o |__ ) ) http://www.dangermouse.org/ nicole@deviantimages.com // \\ http://www.deviantimages.com/ ---------------------------(((---(((----------------------------------------- -- Powered by Coka-Cola and FreeBSD -- -- Strong as any man - made for a Woman -- -- "I drank WHAT ?!" - Socrates -- Hmm You seem better - "been giving myself shock treatments" Up the Voltage! ----------------------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message