From: Chris Hoogendyk (hoogendyk@bio.umass.edu)
Date: Thu Sep 15 2005 - 12:25:20 EDT
(original question/message at end)
A couple of people have pointed out a pair of patches that are supposed
to resolve this problem:
113273-10
114356-06
I checked, and I actually have those patches already installed on this
server; and, from sunsolve, they are the latest versions. Following is
the information on the system revision, patches, and related packages. I
still have the problem and am still in need of a solution. Would prefer
to have faith in Sun, but will remove SUNWsshxx packages and install
open-ssh if I can't resolve this in any other way.
server1:/# more /etc/release
Solaris 9 9/04 s9s_u7wos_09 SPARC
Copyright 2004 Sun Microsystems, Inc. All Rights Reserved.
Use is subject to license terms.
Assembled 29 June 2004
server1:/# showrev -p | grep 113273
Patch: 113273-07 Obsoletes: Requires: Incompatibles: Packages: SUNWsshdu
Patch: 113273-10 Obsoletes: Requires: Incompatibles: Packages: SUNWsshdu
server1:/# showrev -p | grep 114356
Patch: 114356-03 Obsoletes: Requires: Incompatibles: Packages: SUNWsshu
Patch: 114356-06 Obsoletes: Requires: Incompatibles: Packages: SUNWsshu
server1:/# pkginfo -i | grep SUNWssh
system SUNWsshcu SSH Common, (Usr)
system SUNWsshdr SSH Server, (Root)
system SUNWsshdu SSH Server, (Usr)
system SUNWsshr SSH Client and utilities,
(Root)
system SUNWsshu SSH Client and utilities, (Usr)
server1:/# pkginfo -il SUNWsshu
PKGINST: SUNWsshu
NAME: SSH Client and utilities, (Usr)
CATEGORY: system
ARCH: sparc
VERSION: 11.9.0,REV=2002.04.06.15.27
BASEDIR: /
VENDOR: Sun Microsystems, Inc.
DESC: Secure Shell protocol Client and associated Utilities
PSTAMP: leo20041022104250
INSTDATE: Jul 27 2005 14:50
HOTLINE: Please contact your local service provider
STATUS: completely installed
FILES: 11 installed pathnames
4 shared pathnames
4 directories
7 executables
3583 blocks used (approx)
server1:/# pkginfo -il SUNWsshdu
PKGINST: SUNWsshdu
NAME: SSH Server, (Usr)
CATEGORY: system
ARCH: sparc
VERSION: 11.9.0,REV=2002.04.06.15.27
BASEDIR: /
VENDOR: Sun Microsystems, Inc.
DESC: Secure Shell protocol Server
PSTAMP: leo20040927162439
INSTDATE: Mar 15 2005 15:37
HOTLINE: Please contact your local service provider
STATUS: completely installed
FILES: 5 installed pathnames
3 shared pathnames
3 directories
2 executables
1442 blocks used (approx)
I originally built this system beginning in March of this year, and
installed the latest recommended and security patch cluster at that
time. Then in August, I pulled down the latest recommended and security
patch cluster again and installed that.
I did install openssl along the way, because I couldn't see how to link
other packages to Sun's ssl or even whether it existed or was somehow
integrated inside their implementation of ssh. Seems that this would be
pretty routine, though, since people don't generally just install
Solaris and go with it, they add other packages, and those other
packages have dependencies and requirements.
---------------
Chris Hoogendyk
-
O__ ---- Systems Administrator
c/ /'_ --- Biology & Geology Departments
(*) \(*) -- 140 Morrill Science Center
~~~~~~~~~~ - University of Massachusetts, Amherst
---------------
-------- Original Message --------
Subject: sftp-server doesn't quit on Solaris 9
Date: Thu, 15 Sep 2005 09:41:39 -0400
From: Chris Hoogendyk <hoogendyk@bio.umass.edu>
To: Sun Managers List <sunmanagers@sunmanagers.org>
Yesterday I did a `ps -ef | grep ftp` and discovered "a zillion" (ok,
maybe 150) sftp-server processes running. Weird. They didn't seem to be
accumulating cpu, and they were legitimate users who I would expect to
be doing that, but not for the processes to be hanging around. I also
noted that some of them were several days old.
As an experiment, I went onto another Solaris 9 server, and did an sftp
to the server in question:
server2:/# sftp me@server1
Connecting to server1...
me@server1's password:
sftp > ls
drwx------ 2 me geostaff 512 Sep 13 11:05 mail
-rw-r--r-- 1 root other 907776 Sep 14 15:35 some.tar
drwx------ 7 me geostaff 512 Aug 30 13:02 net-private
sftp > get some.tar
sftp > exit
server2:/# ls
TT_DB etc lost+found opt tmp xfn
bin export metadb platform u1
cdrom home mnt proc usr
dev kernel net sbin var
devices lib nsmail some.tar vol
server2:/# rm some.tar
Then I went back to server1 and found that the sftp-server process with my name as the account running it was still running. Hmm. End of day.
This morning, I came in and found that the same process is still running, along with the zillion other sftp-server processes.
server1:/# ps -ef | grep 8787
root 19425 25712 0 09:15:24 pts/8 0:00 grep 8787
root 8787 638 0 15:38:29 ? 0:00 /usr/lib/ssh/sshd
me 8819 8787 0 15:38:39 ? 0:00 /usr/lib/ssh/sftp-server
This is the Sun Solaris 9 install (9/04, and patched). I did not remove Sun's ssh or overlay it with open-ssh, because it seemed to interoperate with no difficulties with our other systems. The system seems to be behaving just fine in other respects and all services seem to be fast and responsive.
I can obviously kill these processes, but this is just bogus! Has anyone else experienced this? Does anyone have any idea what could be causing this? Or how to fix it?
Actually, killing is easier said than done:
server1:/# kill 8819 8787
server1:/# ps -ef | grep 8787
root 21391 25712 0 09:31:40 pts/8 0:00 grep 8787
root 8787 638 0 15:38:29 ? 0:00 /usr/lib/ssh/sshd
me 8819 8787 0 0:00 <defunct>
server1:/# kill -9 8819 8787
server1:/# ps -ef | grep 8787
root 21589 25712 0 09:32:17 pts/8 0:00 grep 8787
root 8787 638 0 15:38:29 ? 0:00 /usr/lib/ssh/sshd
me 8819 8787 0 0:00 <defunct>
server1:/#
As a side note, on Sunday, September 4th, I rebooted server1. When I did so, I got several messages on server2 saying "session terminated from server1". Related?
TIA
---------------
Chris Hoogendyk
-
O__ ---- Systems Administrator
c/ /'_ --- Biology & Geology Departments
(*) \(*) -- 140 Morrill Science Center
~~~~~~~~~~ - University of Massachusetts, Amherst
---------------
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:31:39 EDT