Re: once a week we are having elogd segault?, posted by Stefan Ritt on Thu Aug 7 11:04:39 2025
|
Probably some very strange URL form nexpose to trigger a potential buffer overflow. If I get the precise URL which crashes elogd, I can reproduce and fix it.
Otherwise my usual advice: Run elogd behind an Apache proxy and do the authentication there. This way nexpose does not get to elogd, it will stop at the Apache (without the proper credentials).
Steafn
| mathew goebel wrote: |
|
We have since discovered that the security team is scanning the box in question once a week when the service crashes, with nexpose.
So if you see something similar then you might want to explore that.
| mathew goebel wrote: |
|
Jul 17 20:36:21 elog kernel: elogd[179095]: segfault at 7ffda4d82000 ip 00007f97033a1406 sp 00007ffda4d58c38 error 6 in libc-2.28.so[7f9703374000+1cd000]
Elog version ELOG V3.1.5-30ada1df
Running on a Rehdat 8 enterprise server
compiled with a Makefile change :: change -Wno-unused-result to -Wno-unused-value
Wondering if anyone has been seeing this?
|
|
|
mysql in execute, posted by Stefan Kanitz on Fri Dec 12 08:57:41 2008
|
Hello all,
i have a question to mysql inexecute:
This works:
Execute new = mysql -h localhost -u root -D test1 -e "insert into `test1` (author, type) values ('$Author', '$Type')"
This doesn't work:
Execute new = mysql -h localhost -u root -D test1 -e "insert into `test2` (Autor, Adressat, Teil1, Teil2, Teil3,
Teil4, Teil5, Teil6, Teil7, Teil8 ) values ('$Autor', '$Adressat' , '$Teil1', '$Teil2', '$Teil3', '$Teil4', '$Teil5',
'$Teil6', '$Teil7', '$Teil8' )"
db is okay, i have all checked this. My question is: can the execute-command take a multiline argument? Or perhaps does somebody see a mistake i have made in the execute-line?
Thanks!
Steve
|
|
Re: mysql in execute, posted by Stefan Kanitz on Sat Dec 13 14:31:53 2008
|
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
This doesn't work:
Execute new = mysql -h localhost -u root -D test1 -e "insert into `test2` (Autor, Adressat, Teil1, Teil2, Teil3,
Teil4, Teil5, Teil6, Teil7, Teil8 ) values ('$Autor', '$Adressat' , '$Teil1', '$Teil2', '$Teil3', '$Teil4', '$Teil5',
'$Teil6', '$Teil7', '$Teil8' )"
|
In the elogd.cfg file, you cannot have multi-line options. Either you put everything on a single line (I guess there is also some limit at a few hundred characters) or you call a batch file which then calls the mysql command.
|
Thanks!
|
|
Problems with execute delete, posted by Stefan Kanitz on Tue Dec 23 11:02:26 2008
|
Hi all,
i have problems with execute delete (execute new works fine) in following config (the attribute 'Counter' will not evaluated). Can anybody help me?
Here is the config:
Attributes = Counter, Autor, Adressat, Start, Ende, Mitteilung, TextBeachten
Show Attributes = Counter, Autor, Adressat, Start, Ende, Mitteilung, TextBeachten
Show Attributes Edit = Counter, Autor, Adressat, Start, Ende, Mitteilung, TextBeachten
Type Start = date
Type Ende = date
Required Attributes = Autor, Adressat, Start, Ende, Mitteilung
Extendable options = Adressat
Preset Autor = $long_name
Preset Counter = SoMi-#####
Locked Attributes = Autor, Counter
Required Attributes = Adressat, Start, Ende, Mitteilung
Options Adressat = Alle, 1. Semester, 2. Semester, 3. Semester, 4. Semester, 5. Semester, 6. Semester, 7. Semester, 8. Semester
MOptions Textbeachten = Bitte Mitteilungs-Text anzeigen lassen
Execute new = C:\xampp\mysql\bin\mysql.exe -h localhost -u root -p123456 -D screen -e "insert into somi (counter,adressat,start,ende,kumi,mitlami,lami) values ('$Counter', '$Adressat', '$Start', '$Ende', '$Mitteilung', '$TextBeachten', '$text')"
Execute delete = C:\xampp\mysql\bin\mysql.exe -h localhost -u root -p123456 -D screen -e "delete from somi where counter='$Counter'"
Thanks in advance and Merry Christmas!!
Steve
|
|
Re: Problems with execute delete, posted by Stefan Kanitz on Tue Dec 23 12:17:06 2008
|
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
i have problems with execute delete (execute new works fine) in following config (the attribute 'Counter' will not evaluated). Can anybody help me?
|
Attribute substitution on 'execute delete' was not implemented, since I thought that the ELOG message ID would be used as the primary key in an SQL database, so one would not need the attributes. I added howver this functrionality in SVN revision 2159, so the next release will contain this fix.
|
This sounds very good! Thank you very much (Could you please add this functionality for execute edit too? Please :-))
Steve
|
|
Re: Problems with execute delete, posted by Stefan Kanitz on Tue Dec 23 12:31:39 2008
|
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
| Stefan Ritt wrote: |
|
| Stefan Kanitz wrote: |
|
i have problems with execute delete (execute new works fine) in following config (the attribute 'Counter' will not evaluated). Can anybody help me?
|
Attribute substitution on 'execute delete' was not implemented, since I thought that the ELOG message ID would be used as the primary key in an SQL database, so one would not need the attributes. I added howver this functrionality in SVN revision 2159, so the next release will contain this fix.
|
This sounds very good! Thank you very much (Could you please add this functionality for execute edit too? Please :-))
|
For 'execute edit' this worked from the beginning.
|
Thank you! |
|
elogd hangs when Date format in elogd.cfg, posted by Stefan Kanitz on Thu Jan 8 14:42:34 2009
|
Hi,
after setting
Date format = %Y-%m-%e
in elogd.cfg,
elogd hangs and must be restarted manually. Can anybody help me?
Thanks,
Steve |
|
Re: elogd hangs when Date format in elogd.cfg, posted by Stefan Kanitz on Thu Jan 8 15:36:28 2009
|
| Stefan Kanitz wrote: |
|
Hi,
after setting
Date format = %Y-%m-%e
in elogd.cfg,
elogd hangs and must be restarted manually. Can anybody help me?
Thanks,
Steve
|
I found my mistake:It must be
Date format = %Y-%m-%d
Steve
|
|