BUG: Recent Printk Recursion!
Jul 5, 2009i have this error on my log.
what is this.
72 Time(s): BUG: recent printk recursion!
2 Time(s): Firewall: *TCP_IN Blocked* IN=venet0 OUT= <2>BUG: recent printk recursion!
ADVERTISEMENT
Disabling Printk Message Supression?
Apr 18, 2008I am trying to troubleshoot messages piling up in my /var/log/messages on CentOS 5 that look like this:
Apr 18 10:04:01 sc16 kernel: printk: 3 messages suppressed.
Apr 18 10:04:06 sc16 kernel: printk: 2 messages suppressed.
Apr 18 10:04:14 sc16 kernel: printk: 3 messages suppressed.
Apr 18 10:04:17 sc16 kernel: printk: 1 messages suppressed.
Apr 18 10:04:25 sc16 kernel: printk: 3 messages suppressed.
Apr 18 10:04:31 sc16 kernel: printk: 1 messages suppressed.
Apr 18 10:04:39 sc16 kernel: printk: 2 messages suppressed.
The messages are supressed so I can't see what they are or what is causing them.
How can I disable printk supression?
I have already tried:
echo 0 > /proc/sys/kernel/printk_ratelimit_burst
echo 0 > /proc/sys/kernel/printk_ratelimit
They don't seem to disable it... Any ideas?
Check /etc/named.conf For Recursion Restrictions
Jun 23, 2007I'm getting this warning from check server security option in csf :
--------
You have a local DNS server running but do not have any recursion restrictions set in /etc/named.conf. This is a security and performance risk and you should look at restricting recursive lookups to the local IP addresses only
--------
I saw named.conf but In fact I didn't understand what should I do
Can somebody tells me what should i do and what this warning trying to tell me?
Apache :: Creating Rule For Directory Recursion?
Aug 29, 2013I have a number of WordPress, Drupal, Wiki sites running under RHEL6.
Apache version:httpd -v
Server version: Apache/2.2.15 (Unix)
Server built: Aug 2 2013 08:02:18
We are subject to internal scans by Appscan and Tenable. It is a security requirement so I cannot just block them.
The scanners, of course, attempt to recurse the directory structure and find vulnerable files such as boot.ini, winnt.com and such.
This drives the php content management systems nuts.
Request comes in and is handled by php.
PHP checks the cache for that name and does not find it.
PHP generates a MySQL query and sends it.
MySQL tries and fails to satisfy the query.
MySQL returns result to php.
PHP Writes a cached of the result and presents it to the web.
In other words, a whole lot of processor/memory.
The security scans typically look like......
[Thu Aug 29 00:35:15 2013] [error] [client XXX.XXX.XXX.XXX] Invalid URI in request GET /../../../../../../../../../../../../etc/passwd HTTP/1.1
[Thu Aug 29 00:35:15 2013] [error] [client XXX.XXX.XXX.XXX] Invalid URI in request GET ../../../../../../../../../../../../etc/passwd HTTP/1.1
[Thu Aug 29 00:35:15 2013] [error] [client XXX.XXX.XXX.XXX] Invalid URI in request GET //../../../../../../../../../../../../etc/passwd HTTP/1.1
[Thu Aug 29 00:32:26 2013] [error] [client XXX.XXX.XXX.XXX] Invalid URI in request GET ....................windowswin.ini HTTP/1.1
[Thu Aug 29 00:32:26 2013] [error] [client XXX.XXX.XXX.XXX] Invalid URI in request GET ....................winntwin.ini HTTP/1.1
I have been able to improve performance, speed and security by mod_rewrite
RewriteRule .*.(dll|ini|exe|com)$ - [R=404,NC]
Now (Finally) the question.
I have not been able to create a rule for the directory recursion.
I want to R=404 any that has a "../.." or "...." or ...." but I can not get it to recognize the string correctly.
I believe that this would improve speed and security.
Packet Loss :: Server Kernel: Printk: 59 Messages Suppressed
Jun 10, 2008root@server [~]# tail -f /var/log/messages
Jun 10 14:14:49 server kernel: printk: 56 messages suppressed.
Jun 10 14:14:49 server kernel: ip_conntrack: table full, dropping packet.
Jun 10 14:14:54 server kernel: printk: 59 messages suppressed.
Jun 10 14:14:54 server kernel: ip_conntrack: table full, dropping packet.
Jun 10 14:14:59 server kernel: printk: 85 messages suppressed.
Jun 10 14:14:59 server kernel: ip_conntrack: table full, dropping packet.
Jun 10 14:15:04 server kernel: printk: 90 messages suppressed.
Jun 10 14:15:04 server kernel: ip_conntrack: table full, dropping packet.
Jun 10 14:15:09 server kernel: printk: 58 messages suppressed.
Jun 10 14:15:09 server kernel: ip_conntrack: table full, dropping packet.
Jun 10 14:15:14 server kernel: printk: 70 messages suppressed.
Jun 10 14:15:14 server kernel: ip_conntrack: table full, dropping packet.
Jun 10 14:15:19 server kernel: printk: 193 messages suppressed.
Jun 10 14:15:19 server kernel: ip_conntrack: table full, dropping packet.
Anyone know what this is about?
Using Centos / Cpanel
Linux server.domain.com 2.6.9-67.0.15.ELsmp #1 SMP Thu May 8 10:52:19 EDT 2008 i686 i686 i386 GNU/Linux
root@server [~]# sysctl net.ipv4.netfilter.ip_conntrack_max
net.ipv4.netfilter.ip_conntrack_max = 65536
I ran this in the meantime.
sysctl -w net.ipv4.netfilter.ip_conntrack_max=72000
OLM.net Recent Experiences
May 25, 2007I'm considering OLM.net and their dedicated server packages. Does anyone have any recent experiences with them and their performance, support, uptime, etc.? The only reviews I seen in here are a few years old.
View 14 Replies View RelatedAny Recent Reviews For VectorLevel
Dec 21, 2008I plan on opening a local website that will have a forum on it. I think the forum will mostly have members from my area, neighbors basically. I live in Irvine, California and thus wanted a local hosting company. It was really by random chance that I bumped into Vector Level which I found out is based in Irvine as well. Their plans look very reasonable for what I need, just a small forum basically. Speed is important and their website loads pretty fast so that's good.
I've already given them a call and a guy named Robert answered a lot of my questions. Before I order an account, can anyone comment on them? current customers? I searched and found a few reviews but they were a few months old so I don't know if they are still hosting with them. I understand they are a new company which is why I wanted to do my research more thoroughly before ordering.
Recent Experience In Mexico
Mar 29, 2008Anyone have recent experience / recommendations for dedicated server hosting Mexico?
View 1 Replies View RelatedXO Transit - Recent Experiences
Jan 4, 2007Does anyone have any recent experience in dealing with XO for transit? Any noticable latency/congestion on their network or at peering points? Overall customer satisfaction?
It seems most have dropped XO from their hosting networks due to issues. Since their recent network upgrade and business division I am wondering if anything has improved. We already are located in an XO facility bringing in other transit and of course the easiest solution for our next provider would be to bring XO transit into the mix.
Simple Helix - Any Recent Reviews
Oct 12, 2009As I am about to complete the move of our business sites over to our current Simple Helix account from an overloaded, bogged down VPS, I had noticed a few negative reviews on the forums.
I have had SH account for quite some time. It was hosting a simple PHP page that I couldn't put up on our old ASP server. I had never had any issues with it and when we began experiencing problems on our other sites, we chose to begin the move to SH.
I had heard a few grumblings about it being sold, etc, and actually had our sites moved on to the new servers recently.
After a few initial issues after setup on the new server it has been very reliable and extremely fast.
Before I complete the move, I wanted to request a few more reviews.
We are different than the usual SH customer in that we are not hosting Magento. We are a very professional business looking for a reliable, managed hosting solution. I am having trouble defining a line where it makes sense to switch from shared to dedicated managed hosting.
Recent Future Hosting Reviews
Sep 15, 2008Dallas special Future Hosting is running and I was curious if anyone has a review of their servers?
View 4 Replies View RelatedFreeBSD 5.4 - "recent Enough"
May 29, 2008I've been on FreeBSD for years and I like it. It's a low maintenance OS.
I want to get a new server with RAID-1. My host only offers this machine with FreeBSD 5.4 Release i386.
Most recent stable FreeBSD is 6.2.
From a security standpoint, is it acceptable to run FreeBSD 5.4 Release i386 today?