thr3ads.net - CentOS - [CentOS] Anyone know anything about slurm on CentOS 7? [Oct 2016]

If this information is useful, please help other people find it:
Share via:

m.roth at 5-cent.us

2016-Oct-26 15:09 UTC

[CentOS] Anyone know anything about slurm on CentOS 7?

The recently-left programmer did *something*, and he didn't know what, and
the guy who picked it up is working with me to find out why
/var/log/messages is getting flooded with
Oct 26 11:01:06 <servername> kernel: type=1105
audit(1477494066.569:642430): pid=108551 uid=0 auid=4294967295
ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
msg='op=PAM:session_open
grantors=pam_keyinit,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_krb5,pam_xauth
acct="<user>" exe="/usr/bin/su" hostname=? addr=?
terminal=? res=success'
Oct 26 11:01:06 <servername> kernel: type=1106
audit(1477494066.620:642431): pid=108548 uid=0 auid=4294967295
ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
msg='op=PAM:session_close
grantors=pam_keyinit,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_krb5,pam_xauth
acct="<user>" exe="/usr/bin/su" hostname=? addr=?
terminal=? res=success'
Oct 26 11:01:06 <servername> kernel: type=1104
audit(1477494066.620:642432): pid=108548 uid=0 auid=4294967295
ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
msg='op=PAM:setcred grantors=pam_rootok acct="<user>"
exe="/usr/bin/su"
hostname=? addr=? terminal=? res=success'

Oct 26 11:01:11 <servername> su: (to <user>) root on none
Oct 26 11:01:11 <servername> su: (to <user>) root on none
Oct 26 11:01:11 <servername> systemd: Started Session c21839 of user
<user>.

Other folks can submit jobs to slurm, and we don't get anything like this.

Feel free to contact me offlist....

      mark
Oct 26 11:01:11 <servername> systemd: Starting Session c21839 of user
<user>.

Eero Volotinen

2016-Oct-26 20:09 UTC

head link

[CentOS] Anyone know anything about slurm on CentOS 7?

looks like auditd logging is a bit tweaked.

eero

26.10.2016 6.11 ip. <m.roth at 5-cent.us> kirjoitti:
> The recently-left programmer did *something*, and he didn't know what,
and
> the guy who picked it up is working with me to find out why
> /var/log/messages is getting flooded with
> Oct 26 11:01:06 <servername> kernel: type=1105
> audit(1477494066.569:642430): pid=108551 uid=0 auid=4294967295
> ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
> msg='op=PAM:session_open
> grantors=pam_keyinit,pam_keyinit,pam_limits,pam_
> systemd,pam_unix,pam_krb5,pam_xauth
> acct="<user>" exe="/usr/bin/su" hostname=? addr=?
terminal=? res=success'
> Oct 26 11:01:06 <servername> kernel: type=1106
> audit(1477494066.620:642431): pid=108548 uid=0 auid=4294967295
> ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
> msg='op=PAM:session_close
> grantors=pam_keyinit,pam_keyinit,pam_limits,pam_
> systemd,pam_unix,pam_krb5,pam_xauth
> acct="<user>" exe="/usr/bin/su" hostname=? addr=?
terminal=? res=success'
> Oct 26 11:01:06 <servername> kernel: type=1104
> audit(1477494066.620:642432): pid=108548 uid=0 auid=4294967295
> ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
> msg='op=PAM:setcred grantors=pam_rootok acct="<user>"
exe="/usr/bin/su"
> hostname=? addr=? terminal=? res=success'
>
> Oct 26 11:01:11 <servername> su: (to <user>) root on none
> Oct 26 11:01:11 <servername> su: (to <user>) root on none
> Oct 26 11:01:11 <servername> systemd: Started Session c21839 of user
> <user>.
>
> Other folks can submit jobs to slurm, and we don't get anything like
this.
>
> Feel free to contact me offlist....
>
>       mark
> Oct 26 11:01:11 <servername> systemd: Starting Session c21839 of user
> <user>.
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>

m.roth at 5-cent.us

2016-Oct-26 20:12 UTC

head link

[CentOS] Anyone know anything about slurm on CentOS 7?

Eero Volotinen wrote:> looks like auditd logging is a bit tweaked.
>As far as I know, it's selinux-policy-targeted out of the box. (And yes,
we do have it in permissive mode.)

Any thoughts on how to tweak that?

      mark>
> 26.10.2016 6.11 ip. <m.roth at 5-cent.us> kirjoitti:
>
>> The recently-left programmer did *something*, and he didn't know
what,
>> and
>> the guy who picked it up is working with me to find out why
>> /var/log/messages is getting flooded with
>> Oct 26 11:01:06 <servername> kernel: type=1105
>> audit(1477494066.569:642430): pid=108551 uid=0 auid=4294967295
>> ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
>> msg='op=PAM:session_open
>> grantors=pam_keyinit,pam_keyinit,pam_limits,pam_
>> systemd,pam_unix,pam_krb5,pam_xauth
>> acct="<user>" exe="/usr/bin/su" hostname=?
addr=? terminal=?
>> res=success'
>> Oct 26 11:01:06 <servername> kernel: type=1106
>> audit(1477494066.620:642431): pid=108548 uid=0 auid=4294967295
>> ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
>> msg='op=PAM:session_close
>> grantors=pam_keyinit,pam_keyinit,pam_limits,pam_
>> systemd,pam_unix,pam_krb5,pam_xauth
>> acct="<user>" exe="/usr/bin/su" hostname=?
addr=? terminal=?
>> res=success'
>> Oct 26 11:01:06 <servername> kernel: type=1104
>> audit(1477494066.620:642432): pid=108548 uid=0 auid=4294967295
>> ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
>> msg='op=PAM:setcred grantors=pam_rootok
acct="<user>" exe="/usr/bin/su"
>> hostname=? addr=? terminal=? res=success'
>>
>> Oct 26 11:01:11 <servername> su: (to <user>) root on none
>> Oct 26 11:01:11 <servername> su: (to <user>) root on none
>> Oct 26 11:01:11 <servername> systemd: Started Session c21839 of
user
>> <user>.
>>
>> Other folks can submit jobs to slurm, and we don't get anything
like
>> this.
>>
>> Feel free to contact me offlist....
>>
>>       mark
>> Oct 26 11:01:11 <servername> systemd: Starting Session c21839 of
user
>> <user>.
>>
>>
>> _______________________________________________
>> CentOS mailing list
>> CentOS at centos.org
>> https://lists.centos.org/mailman/listinfo/centos
>>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>

Andrew Holway

2016-Oct-26 20:28 UTC

head link

[CentOS] Anyone know anything about slurm on CentOS 7?

You might have some luck on the beowulf mailing list - http://beowulf.org/
There are quite a few slurmy types kicking around there.

On 26 October 2016 at 22:09, Eero Volotinen <eero.volotinen at iki.fi>
wrote:
> looks like auditd logging is a bit tweaked.
>
> eero
>
> 26.10.2016 6.11 ip. <m.roth at 5-cent.us> kirjoitti:
>
> > The recently-left programmer did *something*, and he didn't know
what,
> and
> > the guy who picked it up is working with me to find out why
> > /var/log/messages is getting flooded with
> > Oct 26 11:01:06 <servername> kernel: type=1105
> > audit(1477494066.569:642430): pid=108551 uid=0 auid=4294967295
> > ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
> > msg='op=PAM:session_open
> > grantors=pam_keyinit,pam_keyinit,pam_limits,pam_
> > systemd,pam_unix,pam_krb5,pam_xauth
> > acct="<user>" exe="/usr/bin/su" hostname=?
addr=? terminal=? res=success'
> > Oct 26 11:01:06 <servername> kernel: type=1106
> > audit(1477494066.620:642431): pid=108548 uid=0 auid=4294967295
> > ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
> > msg='op=PAM:session_close
> > grantors=pam_keyinit,pam_keyinit,pam_limits,pam_
> > systemd,pam_unix,pam_krb5,pam_xauth
> > acct="<user>" exe="/usr/bin/su" hostname=?
addr=? terminal=? res=success'
> > Oct 26 11:01:06 <servername> kernel: type=1104
> > audit(1477494066.620:642432): pid=108548 uid=0 auid=4294967295
> > ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0
> > msg='op=PAM:setcred grantors=pam_rootok
acct="<user>" exe="/usr/bin/su"
> > hostname=? addr=? terminal=? res=success'
> >
> > Oct 26 11:01:11 <servername> su: (to <user>) root on none
> > Oct 26 11:01:11 <servername> su: (to <user>) root on none
> > Oct 26 11:01:11 <servername> systemd: Started Session c21839 of
user
> > <user>.
> >
> > Other folks can submit jobs to slurm, and we don't get anything
like
> this.
> >
> > Feel free to contact me offlist....
> >
> >       mark
> > Oct 26 11:01:11 <servername> systemd: Starting Session c21839 of
user
> > <user>.
> >
> >
> > _______________________________________________
> > CentOS mailing list
> > CentOS at centos.org
> > https://lists.centos.org/mailman/listinfo/centos
> >
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>

Troels Arvin

2016-Oct-26 21:18 UTC

head link

[CentOS] Anyone know anything about slurm on CentOS 7?

m.roth-x6lchVBUigD1P9xLtpHBDw wrote:> why /var/log/messages is getting flooded with
> Oct 26 11:01:06 <servername> kernel: type=1105 audit
> (1477494066.569:642430): pid=108551 uid=0[...]

Is your auditd service running? I believe I've seen cases where auditd 
was not running, leading to audit-stuff showing up in /var/log/messages

-- 
Regards,
Troels Arvin

Maybe Matching Threads

Search for more reasonably related threads

CentOS - Oct 2016 - Anyone know anything about slurm on CentOS 7?

[CentOS] Anyone know anything about slurm on CentOS 7?

[CentOS] Anyone know anything about slurm on CentOS 7?

[CentOS] Anyone know anything about slurm on CentOS 7?

[CentOS] Anyone know anything about slurm on CentOS 7?

[CentOS] Anyone know anything about slurm on CentOS 7?

Maybe Matching Threads