Red Hat Bugzilla – Bug 1008127
fresh install of packstack shows neutron has sudo problem
Last modified: 2016-04-26 10:48:25 EDT
Description of problem:
this is a fresh install of packstack and just be chance i was looking through the system logs and i saw this in /var/log/secure. it is being repeated over and over again
in 9 hours the log has reach 3.5mb in size. messages are repeated every 2 seconds.
Sep 14 21:13:23 compute02 sudo: neutron : TTY=unknown ; PWD=/ ; USER=root ; COMMAND=/usr/bin/neutron-rootwrap /etc/neutron/rootwrap.conf ovs-vsctl --timeout=2 --format
=json -- --columns=name,external_ids list Interface
Sep 14 21:13:25 compute02 sudo: neutron : TTY=unknown ; PWD=/ ; USER=root ; COMMAND=/usr/bin/neutron-rootwrap /etc/neutron/rootwrap.conf ovs-vsctl --timeout=2 list-por
Version-Release number of selected component (if applicable):
Steps to Reproduce:
This command is run periodically by neutron in order to monitor the state of OVS devices.
These log messages are expected when using "sudo" to gain elevated privileges.
You could configure your logging environment to filter them out. You could file a bug upstream if you would like to suggest that neutron use something other than "sudo" for privilege escalation.