search for: rogue

I have three users whose smbd processes will suddenly go rogue and start sucking up CPU time. It isn't guaranteed that every time they log in, that their process goes rogue, but it happens a lot. At that time I see that those smbd processes have an effective UID of the person's username, and a real UID of root. Everyone else's is always EUID ro...

...ve recently noticed that I am having problems when checking IMAP-SSL mail with Mac OS X clients. There are not problems using Mozilla or Outlook on Windows, but Mac clients (Thunderbird, Mozilla, Mail.app) all exhibit the same behavior - they can check and send mail, but I end up with a single, rogue child imap process on the server that pins the cpu that i have to 'kill -9' to clear out. Is this a Mac problem or a Dovecot problem? I'm not even sure what to look for in the logs... Thanks, Darren David

This is a follow-on to my previous message about some 3.0.23b Solaris smbd processes going rogue and eating CPU time. One characteristic of the processes are that the effective UID of the process is the user's UID, rather than root's which is what a see for the well behaved processes. Any ideas how that could be happening so that I can get closer to a solution? Thanks. -- Jonathan...

...70) ads_connect for domain GENOSHA failed: No such file or directory [2003/09/03 09:41:12, 5] nsswitch/winbindd.c:winbind_client_read(462) read failed on sock 17, pid 31890: EOF [2003/09/03 09:41:12, 5] nsswitch/winbindd.c:winbind_client_read(462) read failed on sock 18, pid 31890: EOF [root@rogue libsmb]# wbinfo --sequence GENOSHA : DISCONNECTED [root@rogue libsmb]# wbinfo -u Error looking up domain users [root@rogue libsmb]# wbinfo -g Error looking up domain groups with disable netbios = no: [root@rogue libsmb]# /etc/init.d/winbind restart Shutting down Winbind services:...

An old problem has started to reappear with our Solaris (2.8) Samba (3.0.23b). This was after an upgrade from 3.0.22 in which the problem was worse. Occasionally an smbd process will go "rogue" and start consuming CPU cycles until killed. I did a truss of the process and got back this tight loop. fcntl(27, F_SETLKW64, 0xFFBEEF98) = 0 fcntl(27, F_SETLKW64, 0xFFBEF010) = 0 fcntl(27, F_SETLKW64, 0xFFBEF208) = 0 fcntl(27, F_SETLKW64, 0xFFBEF28...

...en the client only requested the print queue state. Now it happens when any printing transactions are in progress. It slows down the machine completely and makes the service unusable. Same setup, same tdb's work OK on linux. Seems to be an old problem: http://lists-archives.org/samba/21962-rogue-process.html Any chance to fix this, do you need more debug output ? Can't see much tdb activity with tdb:10 (?) cheers ~christoph -- /* Christoph Beyer | Office: Building 2b / 23 *\ * DESY | Phone: 040-8998-2317 * * - IT - |...

Hi All, We're having some problems using Samba and supposedly "standalone" rogue NT servers on one of our network domains. When an authenticated samba-served NT domain user on a client machine tries to access a share on a non BDC/PDC NT server that it part of the same samba domain, the standalone NT server sends it a message saying "Your logon time at NTDOMAIN has ende...

https://bugs.freedesktop.org/show_bug.cgi?id=97508 Bug ID: 97508 Summary: Rogue Legacy 4th area with corrupted textures Product: Mesa Version: git Hardware: Other OS: All Status: NEW Severity: normal Priority: medium Component: Drivers/DRI/nouveau Assignee: nouveau at lists.freed...

Hi, one of the sip-extensions we created always returns busy when someone tries to call the phone. The extension itself can place calls. We're using snom360 phones with the latest firmware. On every one of those phones when we register with the sip-extension, we've experienced the same problem. This is the output from sip show channels: Peer User/ANR Call ID Seq

Hi folks. Periodically a workgroup shows up on our network with an inappropriate name. We're trying to find the best way to track this down as it's quite intermittent. We can obviously look for announcement messages (in broadcast packets on ports 138/139), but this must be done on each subnet and we have enough subnets that this would be rather tedious and at best, a last resort. The

...;, "#007FFF", "cyan", "#7FFF7F", "yellow", "#FF7F00", "red", "#7F0000")) #Tileplots comparing how CWT recoveries from brood year 1974 -1977 and GSI data #from 2010 - 2011 represent the relative abundance of Rogue river chinook salmon through space and time R_g_s<-tileplot(Rogue~month_num*-area_num,gsi_s,col.regions=jet.colors(256), scales=list(x=list(at=5:9, labels=c('May' ,'June','July','August','September')), y=list(at=(-1):-8,labels=c('T','...

I seem to notice these two processes running with top. Netstat hasn't been issued by me and cant be killed with the START state. Can someone enlighten me on these processes. FreeBSD dracula.transylvania.net 6.0-RELEASE FreeBSD 6.0-RELEASE #4: Sun Dec 4 00:22:01 EST 2005 root@dracula.transylvania.net:/usr/src/sys/i386/compile/BLEACH i386 The box doesnt run ssh or telnet just postfix

hi, I wonder if anyone can tell me how the Nicecast licensing works. http://www.rogueamoeba.com/nicecast/ Nicecast, as it seems to me, uses Icecast as an internal server. They list Icecast in their sources dir: http://www.rogueamoeba.com/sources In their manual they also credit Xiph with the statement: "Portions of this Rogue Amoeba software may utilize the following copyrigh...

...incorrectly thought that the kernel could switch RDRAND on and off. > It turns out that a hypervisor can do this, but not the kernel. Also, > determinism is lost anyway because of TSX, which *also* can't be > turned on and off. > Actually, a much bigger reason is because it lets rogue guest *user space*, even will a well-behaved guest OS, do something potentially harmful to the host. -hpa

...incorrectly thought that the kernel could switch RDRAND on and off. > It turns out that a hypervisor can do this, but not the kernel. Also, > determinism is lost anyway because of TSX, which *also* can't be > turned on and off. > Actually, a much bigger reason is because it lets rogue guest *user space*, even will a well-behaved guest OS, do something potentially harmful to the host. -hpa

...at security problem really should be a development priority, but I also realize it's a resource and time issue. I suppose because it is not a direct security vulnerability and would require Bind9 to be compromised there is faith it won't happen in most cases. Regarding the DHCP/DNS and rogue clients, I suppose I hadn't factored that it even though I've been using a similar configuration for years. I was using it so there was automatic availability on the network of simple devices by hostname, like Cisco switches and random VM's spun up for testing. As bad as the impleme...

...transactions that for the innocent people involved become non-repudiable. How does one run a mail server without implementing security, that is - how do I know that senders sending me email are who they say they are ? Simple answer: I don't care who they are. I simply use my firewall to ban rogue IP's, even whole ranges of rogue IP's. MY policy is to assign RESPONSIBILITY to public IP addresses. If an IP address does not behave ethically towards my server, I simply DROP all packets between me and them. (Interestingly, every time I run my scripts and ban all the current bad actors...

...to a kill -9, but killing off the main PID does not kill the runaway children. (Instead, their PPID goes to 1 ) Killing off all the smbd processes with kill -9, and restarting the daemon fixes the problem. This really isn't acceptable. The only thing I can see in the log is that there is rogue machine doing connects with a bad userid/password pair. This is occuring in the log every second or so. The problem here is that we are running at a high debug level, and the log is overwritten within minutes due to this problem. At the moment I am running a test to see if I can reliably reprod...

...'s unit tests make clang assert: Assertion failed: (TargetInitialized && "Target not initialized!"), function getTargetVersion, file ToolChains.h, line 100. Cheers, -- ____________________________________________________________ Sean McBride, B. Eng sean at rogue-research.com Rogue Research www.rogue-research.com Mac Software Developer Montréal, Québec, Canada

Hi, > If we don't have someone willing to maintain and administrate the wiki, we need to take it down. Any volunteers? I think the wiki is a pretty good place to let people contribute their knowledge about llvm. What things a maintainer need to do? Regards, chenwj -- Wei-Ren Chen (陳韋任) Computer Systems Lab, Institute of Information Science, Academia Sinica, Taiwan (R.O.C.)