Bug 705427
| Summary: | Hourly logging from cron fills up /var/log/secure | ||
|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Philip Prindeville <philipp> |
| Component: | systemd | Assignee: | Lennart Poettering <lpoetter> |
| Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
| Severity: | medium | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 15 | CC: | johannbg, lpoetter, metherid, mschmidt, notting, philipp, plautrba, theinric, udovdh |
| Target Milestone: | --- | Keywords: | Reopened |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | systemd-26-4.fc15 | Doc Type: | Bug Fix |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2011-06-21 17:25:10 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Philip Prindeville
2011-05-17 16:12:14 UTC
There is a patch in upstream git to downgrade the messages to the LOG_DEBUG level: http://cgit.freedesktop.org/systemd/commit/?id=53d5582fa006b0eb528f5dc3f4ba978abd8ac5a3 I don't know if it will stop them appearing in /var/log/secure though. The default /etc/rsyslog.conf has: authpriv.* /var/log/secure which suggests that all levels (including debug) go there. The uppercasing of the process name is done by cron itself: http://git.fedorahosted.org/git/?p=cronie.git;a=blob;f=src/do_command.c;h=e1f54017c97369a7f64f27068af6ce773cd7eb2e;hb=HEAD#l92 (In reply to comment #1) > There is a patch in upstream git to downgrade the messages to the LOG_DEBUG > level: > http://cgit.freedesktop.org/systemd/commit/?id=53d5582fa006b0eb528f5dc3f4ba978abd8ac5a3 > > I don't know if it will stop them appearing in /var/log/secure though. The > default /etc/rsyslog.conf has: > authpriv.* /var/log/secure > which suggests that all levels (including debug) go there. > > > The uppercasing of the process name is done by cron itself: > http://git.fedorahosted.org/git/?p=cronie.git;a=blob;f=src/do_command.c;h=e1f54017c97369a7f64f27068af6ce773cd7eb2e;hb=HEAD#l92 Should /etc/rsyslog.conf be patched to log at 'info' then? systemd-26-2.fc15 has been submitted as an update for Fedora 15. https://admin.fedoraproject.org/updates/systemd-26-2.fc15 There's still a lot of chatter to /var/log/secure -- probably because /etc/rsyslog.conf still contains: authpriv.* /var/log/secure do we also need a defect to change this to: authpriv.info /var/log/secure instead? I have a patch to make pam_systemd.so emit the debug messages only if it is configured in PAM with a "debug=on" option. That's similar to how other PAM modules do it. I sent the patch to the upstream mailing list today, but it does not seem to have reached there. I'll check my email config and resend later today. Package systemd-26-2.fc15: * should fix your issue, * was pushed to the Fedora 15 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing systemd-26-2.fc15' as soon as you are able to, then reboot. Please go to the following url: https://admin.fedoraproject.org/updates/systemd-26-2.fc15 then log in and leave karma (feedback). Picked it up from koji. Works great, after I edit /etc/rsyslog.conf and restart rsyslog. Didn't need to reboot. I believe changing the rsyslog configuration should not be necessary. pam_systemd should stop producing debug messages by default. This is the patch I mentioned: http://lists.freedesktop.org/archives/systemd-devel/2011-May/002531.html Moving back to ASSIGNED. systemd-26-2.fc15 has been pushed to the Fedora 15 stable repository. If problems still persist, please make note of it in this bug report. (In reply to comment #5) > I have a patch to make pam_systemd.so emit the debug messages only if it is > configured in PAM with a "debug=on" option. That's similar to how other PAM > modules do it. > I sent the patch to the upstream mailing list today, but it does not seem to > have reached there. I'll check my email config and resend later today. As there weren't any patches attached to this bug, I'm not sure if the patch you mentioned was part of this defect fix or not. Was it? (In reply to comment #10) > As there weren't any patches attached to this bug, I'm not sure if the patch > you mentioned was part of this defect fix or not. Was it? It was not. Reopening. Let's wait for Lennart's decision on the patch http://lists.freedesktop.org/archives/systemd-devel/2011-May/002531.html The patch has been merged: http://cgit.freedesktop.org/systemd/commit/?id=0e318cad06d483624076777c105bdcdd6aca3596 systemd-26-4.fc15 has been submitted as an update for Fedora 15. https://admin.fedoraproject.org/updates/systemd-26-4.fc15 Package systemd-26-4.fc15: * should fix your issue, * was pushed to the Fedora 15 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing systemd-26-4.fc15' as soon as you are able to, then reboot. Please go to the following url: https://admin.fedoraproject.org/updates/systemd-26-4.fc15 then log in and leave karma (feedback). Hmm. I dunno but I still see stuff like: Jun 19 13:15:02 bla klogd: /USR/SBIN/CROND[16079]: (root) CMD (LANG=C LC_ALL=C /usr/bin/mrtg /etc/mrtg/mrtg.cfg --lock-file /var/lock/mrtg/mrtg_l --confcache-file /var/lib/mrtg/mrtg.ok) being logged every five minutes in /var/log/messages even though syslog.conf says cron.none. Why is this changed from Fedora 14? Why the caps? Also dbus is filling up messages with kinds of non-error logging. How can this be tamed? The classical controls that cron gave us don't appear to work... (In reply to comment #15) > I dunno but I still see stuff like: > Jun 19 13:15:02 bla klogd: /USR/SBIN/CROND[16079]: (root) CMD (LANG=C LC_ALL=C > /usr/bin/mrtg /etc/mrtg/mrtg.cfg --lock-file /var/lock/mrtg/mrtg_l > --confcache-file /var/lib/mrtg/mrtg.ok) > > being logged every five minutes in /var/log/messages even though syslog.conf > says cron.none. Since Fedora 8 the default syslog implementation is rsyslog (http://fedoraproject.org/wiki/Releases/FeatureRsyslog). Perhaps you could try using that instead of sysklogd, which does not seem to be actively maintained. > Why is this changed from Fedora 14? I don't know. > Why the caps? See comment #1. > Also dbus is filling up messages with kinds of non-error logging. > How can this be tamed? > The classical controls that cron gave us don't appear to work... From this description I have no idea what's going on. None of this is related to this BZ, which was about excessive logging from pam_systemd. I suggest discussing this with cronie or sysklogd maintainers. rsyslog does the same. I don't need cron in messages, just in /var/log/cron. If both crons have teh same issue then somethign more could be going on. User error. Or a bug. How can we find out? I don't know. I can only repeat myself: Talk to cronie maintainers/developers. systemd-26-4.fc15 has been pushed to the Fedora 15 stable repository. If problems still persist, please make note of it in this bug report. |