Home Forums OS X Server and Client Discussion Questions and Answers 10.4.2 Open directory server locks up

Viewing 5 posts - 1 through 5 (of 5 total)
  • Author
    Posts
  • September 30, 2005 at 10:17 pm #363431
    SkiKacoroski
    Participant

    Hi,

    Starting a few days ago, our open directory server locks up and will not start some new processes. I cannot log into it via ssh, but if I already have an ssh session running I can run top (no load problems) and run some commands (e.g. top). I could not run screen which starts up a new session. The only fix we have found is to cycle power (not acceptable). Any ideas are most welcome. The main item in the log files is:

    Sep 30 14:58:46 od1 /usr/sbin/PasswordService: client response doesn’t match what we generated
    Sep 30 15:07:29 od1 kernel[0]: arp: 10.1.247.54 moved from 00:30:48:2d:b9:07 to 00:30:48:2d:b9:06 on en0

    cheers,

    ski
    [email protected]
    Northshore School District

    October 3, 2005 at 6:18 pm #363455
    SkiKacoroski
    Participant

    Ok, I have tracked it down to launchproxy started 20 – 40 sshd processes and holding them open. Even if I kill them, I have to reboot before I can do anything (e.g. System Preferences will not start).

    October 20, 2005 at 2:13 pm #363723
    djfake
    Participant

    I’m having the same problem however, it’s because some script kiddies are running a dictionary at the server. At somepoint sshd must die because no one can login and we have to hard reboot to get back up.

    HELP!

    Oct 19 16:38:43 comrb-24-10 sshd[5114]: Illegal user linda from 210.95.212.131
    Oct 19 16:38:43 comrb-24-10 sshd[5114]: Failed password for illegal user linda from 210.95.212.131 port 60525 ssh2
    Oct 19 16:38:45 comrb-24-10 sshd[5116]: Illegal user linda from 210.95.212.131
    Oct 19 16:40:44 comrb-24-10 sshd[5116]: fatal: Timeout before authentication for 210.95.212.131
    Oct 19 16:41:31 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:08 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:14 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:20 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:25 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:31 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:36 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:42 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:48 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:53 comrb-24-10 mDNSResponder: Unknown DNS packet type 5020 from 128.248.155.165:1951 to 10.134.24.10 :5353 on 01816000 (ignored)
    Oct 19 16:48:59 comrb-24-10 launchproxy[5166]: /usr/libexec/xftpd: getnameinfo(): Non-recoverable failure in name resolution
    Oct 19 16:48:59 comrb-24-10 launchproxy[5166]: /usr/libexec/xftpd: getnameinfo(): Non-recoverable failure in name resolution
    Oct 19 16:48:59 comrb-24-10 ftpd[5168]: getpeername (xftpd): Socket is not connected
    Oct 19 16:58:47 comrb-24-10 launchproxy[5200]: /usr/libexec/sshd-keygen-wrapper: getnameinfo(): Non-recoverable failure in name resolution
    Oct 19 16:58:47 comrb-24-10 launchproxy[5200]: /usr/libexec/sshd-keygen-wrapper: getnameinfo(): Non-recoverable failure in name resolution
    Oct 19 17:02:48 comrb-24-10 sshd[5225]: error: Bind to port 22 on 0.0.0.0 failed: Address already in use.
    Oct 19 17:02:48 comrb-24-10 sshd[5225]: fatal: Cannot bind any address.
    Oct 19 17:03:06 comrb-24-10 launchproxy[5227]: /usr/libexec/xftpd: getnameinfo(): Non-recoverable failure in name resolution
    Oct 19 17:03:06 comrb-24-10 launchproxy[5227]: /usr/libexec/xftpd: getnameinfo(): Non-recoverable failure in name resolution
    Oct 19 17:03:06 comrb-24-10 ftpd[5228]: getpeername (xftpd): Socket is not connected
    Oct 19 17:03:31 comrb-24-10 reboot: rebooted by locals

    January 3, 2006 at 2:12 pm #364613
    djfake
    Participant

    even with another port, still locks up. convinced theres a problem with sshd & password server.

    March 14, 2006 at 6:14 pm #365683
    djfake
    Participant

    Upgraded to 10.4.4 and the problem went away.

    Fancy that….

  • Author
    Posts
Viewing 5 posts - 1 through 5 (of 5 total)
  • You must be logged in to reply to this topic.

Comments are closed

Copyright © 2025 AFP548. All Rights Reserved.