On 07/ 4/12 07:05 AM, Miguel Montero RodrÃguez wrote:
I've just seen that /var/lib/ldap/accesslog is growing so I've realized that olcAccessLogPurge is not working properly (for example, I have log.0000000001 file from 2011-09-10).
I believe you're confusing the accesslog purge with BerkeleyDB's internal bookkeeping. olcAccessLogPurge will configure slapd cleaning out old LDAP entries which are used as the accesslog. But remember that OpenLDAP runs on *top* of BerkeleyDB, if you're using the BDB and/or the HDB backends. The log.* files in your data directory are there as part of BerkeleyDB, and OpenLDAP doesn't know about them.
You'll want to investigate the db_checkpoint and db_archive (specifically db_archive -a) commands, which will tell you which of those log.* files are old and unused and can be removed. You might also be interested in the DB_LOG_AUTOREMOVE flag in DB_CONFIG.
If you're running a modern release (and, really, if you participate in this list that's not optional...) you can also investigate using mdb as the backend, which does away with those files altogether.