Am Mon, 24 Oct 2016 15:47:01 +0100 schrieb Dan Hawkes <[email protected]>:
> We've encountered a issue where openldap seems to be writing huge > volumes of logs for authentication failures. > > Having freed up some space and run `db_recover` (which cleared out > the log files), then restarted openldap, it's again written ~120MB of > logs for 200 failed authentication requests. > > The log files are almost entirely timestamps: [...] > OpenLDAP: slapd 2.4.40 > > Any ideas why this is happening? Yes, db is badly configured, 'set_flags DB_LOG_AUTOREMOVE' should do the trick. But prior to that, run db_archive -dvh /path/to/dabatase to remove old files. By the way, BerkleyDB is depricated, you should switch to mdb. -Dieter -- Dieter Klünter | Systemberatung http://sys4.de GPG Key ID: E9ED159B 53°37'09,95"N 10°08'02,42"E
