Anonymous FTP sessions slowly accumulate
in [Solaris]
|
Prev: UX:lp: ERROR: The LP print service could not read your request
Next: Solaris 10 OS Kernel version 5.10-2008.10 ***How to get it***
From: Casper H.S. Dik on 1 Dec 2009 09:14 Gary Mills <mills(a)cc.umanitoba.ca> writes: >In <4b14f252$0$22941$e4fe514c(a)news.xs4all.nl> Casper H.S. Dik <Casper.Dik(a)Sun.COM> writes: >>Gary Mills <mills(a)cc.umanitoba.ca> writes: >>>I've tried many things, all with no effect. All of the timeout >>>settings except one had defaults in /etc/ftpd/ftpaccess. I tried >>>setting `limit-time' to 360 minutes, with no effect. I tried changing >>>the inetd `proto' setting from `tcp6' to `tcp'. That changed the >>>socket type, but otherwise had no effect. >>What is the output of netstat for the connections? >I've just restarted the service, so I'll have to wait a few days >for one to appear. Is there a way to specify a port or process with >netstat, or do I need to start with all TCP connections? No, you will need to list everything and then find the proper connection. Casper -- Expressed in this posting are my opinions. They are in no way related to opinions held by my employer, Sun Microsystems. Statements on Sun products included here are not gospel and may be fiction rather than truth.
From: solx on 1 Dec 2009 13:24 On 01/12/2009 12:51, Gary Mills wrote: > In<oI6dnQYpwoyCdonWnZ2dnUVZ8jqdnZ2d(a)pipex.net> solx<nospam(a)example.net> writes: > >> On 01/12/2009 03:06, Gary Mills wrote: >>> I'm running an anonymous FTP server using the stock in.ftpd on Solaris >>> 10. It works nicely, except that an idle session occasionally >>> remains. Eventually, these reach the session limit, preventing new >>> sessions from starting. This may take a month. I have to disable and >>> enable the service when that happens to clear the idle sessions. > >> I ran the stock in.ftpd for over ten years but never experienced this >> problem. Are you running the in.ftpd in standalone mode? > >> ie # ./in.ftpd -s > >> I used my own S100ftpserver script which was the last to run in rc3.d > > No, it's an SMF service, running under the inetd restarter in > Solaris 10. > Can you try running it in standalone mode?
From: Gary Mills on 4 Dec 2009 21:35 In <4b14f252$0$22941$e4fe514c(a)news.xs4all.nl> Casper H.S. Dik <Casper.Dik(a)Sun.COM> writes: >Gary Mills <mills(a)cc.umanitoba.ca> writes: >>I've tried many things, all with no effect. All of the timeout >>settings except one had defaults in /etc/ftpd/ftpaccess. I tried >>setting `limit-time' to 360 minutes, with no effect. I tried changing >>the inetd `proto' setting from `tcp6' to `tcp'. That changed the >>socket type, but otherwise had no effect. I found one. Here's how it looks in `pfiles': 9: S_IFSOCK mode:0666 dev:287,0 ino:13716 uid:0 gid:0 size:0 O_RDWR SOCK_STREAM SO_KEEPALIVE,SO_SNDBUF(49152),SO_RCVBUF(49640),IP_NEXTHOP(232.193.0.0) sockname: AF_INET6 ::ffff:130.179.16.34 port: 7775 >What is the output of netstat for the connections? TCP: IPv4 Local Address Remote Address Swind Send-Q Rwind Recv-Q State -------------------- -------------------- ----- ------ ----- ------ -------- 130.179.16.34.7775 164.164.240.122.1814 59430 0 49640 0 FIN_WAIT_2 The process has been active for over 16 hours now. Shouldn't there be a timeout from the FIN_WAIT_2 state? -- -Gary Mills- -Unix Group- -Computer and Network Services-
From: Oscar del Rio on 7 Dec 2009 10:48 Gary Mills wrote: > The process has been active for over 16 hours now. Shouldn't there be > a timeout from the FIN_WAIT_2 state? The default is supposed to be about 11 minutes: # ndd /dev/tcp tcp_fin_wait_2_flush_interval 675000
From: Gary Mills on 7 Dec 2009 11:16
In <hfj848$l9c$1(a)news.mie> Oscar del Rio <delrio(a)mie.utoronto.ca> writes: >Gary Mills wrote: >> The process has been active for over 16 hours now. Shouldn't there be >> a timeout from the FIN_WAIT_2 state? >The default is supposed to be about 11 minutes: ># ndd /dev/tcp tcp_fin_wait_2_flush_interval >675000 It seems not to be working... # ndd /dev/tcp tcp_fin_wait_2_flush_interval 675000 # ps -fp "$(pgrep ftpd)" UID PID PPID C STIME TTY TIME CMD ftp 3520 435 0 Dec 04 ? 0:00 /usr/sbin/in.ftpd -a ftp 14798 435 0 09:26:12 ? 0:00 /usr/sbin/in.ftpd -a ftp 15445 435 0 Dec 02 ? 0:00 /usr/sbin/in.ftpd -a ftp 16647 435 0 09:56:45 ? 0:00 /usr/sbin/in.ftpd -a ftp 16702 435 0 08:57:23 ? 0:00 /usr/sbin/in.ftpd -a ftp 16798 435 0 Dec 02 ? 0:00 /usr/sbin/in.ftpd -a ftp 17237 435 0 09:57:21 ? 0:00 /usr/sbin/in.ftpd -a ftp 17526 435 0 Dec 03 ? 0:00 /usr/sbin/in.ftpd -a ftp 19360 435 0 09:59:35 ? 0:00 /usr/sbin/in.ftpd -a ftp 20011 435 0 09:31:24 ? 0:00 /usr/sbin/in.ftpd -a ftp 22867 435 0 Dec 02 ? 0:00 /usr/sbin/in.ftpd -a ftp 24071 435 0 Dec 04 ? 0:00 /usr/sbin/in.ftpd -a ftp 24111 435 0 Dec 04 ? 0:00 /usr/sbin/in.ftpd -a ftp 27178 435 0 09:38:27 ? 0:00 /usr/sbin/in.ftpd -a ftp 27837 435 0 07:47:43 ? 0:00 /usr/sbin/in.ftpd -a ftp 27838 435 0 07:47:43 ? 0:00 /usr/sbin/in.ftpd -a ftp 27839 435 0 07:47:43 ? 0:00 /usr/sbin/in.ftpd -a -- -Gary Mills- -Unix Group- -Computer and Network Services- |