Hi,
i am using graylog2 v0.20.0-rc.1-1 and use ldap for login which works fine.
After some days we noticed that there were more than 8000 established
connections from our graylog2-server to our ldapserver (resulting in "too
many open files"-isse on our ldap-server).
OpenLDAP-Version: 2.4.23-7.3 (slapd - Debian Squeeze Package), LDAP-Options:
Problem occurs with or without SSL. No self signed certificate in use.
> db.ldap_settings.find().pretty()
{
"_id" : ObjectId("52e54c470cf2d29eb9b3e8e0"),
"enabled" : true,
"reader" : "reader",
"search_base" : "ou=People,dc=XXXX,dc=TLD",
"username_attribute" : "cn",
"ldap_uri" : "ldap://XXXXXX.TLD:389/";,
"trust_all_certificates" : true,
"system_username" : "",
"active_directory" : false,
"system_password" : "",
"principal_search_pattern" : "(&(objectClass=inetOrgPerson)(uid={0}))",
"use_start_tls" : false
}
(domain and tld replaced with XXX, TLD)
Nothing is logged to the logs. How to repeat: Configure LDAP, Login with a
user, wait some minutes. Check connections, for example with: lsof
-ni|egrep "$LDAPSERVER:ldap \(ESTABLISHED\)"| wc -l
On our system after about 60 Minutes there are 50-100 open connections.
Is that a problem with our ldapserver (which is working fine with lots of
other services but maybe not as cutting edge as graylog2 :)) or do you need
more information to recreate the issue?
Kind regards,
Moritz
--
You received this message because you are subscribed to the Google Groups
"graylog2" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
