25 Oct
2016
25 Oct
'16
7:26 a.m.
Am Mon, 24 Oct 2016 15:47:01 +0100 schrieb Dan Hawkes dan.hawkes@fissara.com:
We've encountered a issue where openldap seems to be writing huge volumes of logs for authentication failures.
Having freed up some space and run `db_recover` (which cleared out the log files), then restarted openldap, it's again written ~120MB of logs for 200 failed authentication requests.
The log files are almost entirely timestamps:
[...]
OpenLDAP: slapd 2.4.40
Any ideas why this is happening?
Yes, db is badly configured, 'set_flags DB_LOG_AUTOREMOVE' should do the trick. But prior to that, run db_archive -dvh /path/to/dabatase to remove old files. By the way, BerkleyDB is depricated, you should switch to mdb.
-Dieter
--
Dieter Klünter | Systemberatung
http://sys4.de
GPG Key ID: E9ED159B
53°37'09,95"N
10°08'02,42"E