wiki

User Tools

Site Tools

Trace: tdpve_plugin_vmware bacula tsm_report_script itds_addservertoclt tsm_perf_client tsm_client_version gpfs_cmd best_dist ndmp_snapdiff file_perm
aix:aix_debug

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
aix:aix_debug [2022/08/30 16:59]
manu 		aix:aix_debug [2022/10/24 13:23] (current)
manu [Debug PAM]
Line 30: Line 30:
 <cli prompt='#'>​ <cli prompt='#'>​
 # truss -p 348468 # truss -p 348468
 +</​cli>​
 +
 +===== Trace applications =====
 +
 +==== Debug PAM ====
 +
 +To enable PAM debug output, complete the following steps:
 +
 +Create an empty file named pam_debug in the **/​etc/​pam_debug** directory by using the touch command, if the file does not exist. The PAM library checks for the /​etc/​pam_debug file and enables syslog output if it is found.
 +
 +Edit the /​etc/​syslog.conf file to identify a file where it will log the auth syslog messages at the priority level you want. For example, to send PAM debug-level messages to the /​var/​log/​auth.log file, add the following text as a new line in the syslog.conf file:
 +<​code>​
 +*.debug /​var/​log/​auth.log
 +</​code>​
 +
 +Create the output file /​var/​log/​auth.log,​ by using the touch command, if it does not exist.
 +
 +To restart the syslogd daemon so that configuration changes are recognized, complete the following steps:
 +<cli prompt='#'>​
 +# stopsrc -s syslogd
 +# startsrc -s syslogd
 +</​cli>​
 +
 +==== Debug SSH connection ====
 +
 +To start a ssh server in debug mode (will stop after first connection)
 +<cli prompt='#'>​
 +# stoprs -s sshd
 +# /​usr/​sbin/​sshd -p 22 -d
 +</​cli>​
 +
 +Start the client in debug mode
 +<cli prompt='#'>​
 +# ssh -vvv user@server1
 +</​cli>​
 +
 +==== Debug LDAP client ====
 +
 +Add rotation for the debug file
 +<cli prompt='#'>​
 +# cat /​etc/​logrotate.d/​system.conf
 +/​var/​log/​syslog/​ldap.debug {
 +    copytruncate
 +    rotate 3
 +    size=100M
 +}
 +</​cli>​
 +
 +Create the debug file
 +<cli prompt='#'>​
 +# touch /​var/​log/​syslog/​ldap.debug
 +</​cli>​
 +
 +Restart the LDAP daemon in debug mode
 +<cli prompt='#'>​
 +[root@aix01]/​root#​ export LDAP_DEBUG=65535
 +[root@aix01]/​root#​ export LDAP_DEBUG_FILE=/​var/​log/​syslog/​ldap.debug
 +[root@aix01]/​root#​ stop-secldapclntd
 +The secldapclntd daemon is successfully terminated.
 +[root@aix01]/​root#​ start-secldapclntd
 +Starting the secldapclntd daemon.
 +The secldapclntd daemon started successfully.
 +</​cli>​
 +
 +==== Debug DNS ====
 +
 +For info, only the 3 first DNS are answered, even if more are availble int /​etc/​resolv.conf
 +<cli prompt='#'>​
 +[root@labosrv]/​root#​ RES_OPTIONS=debug host myhost01
 +;; res_setoptions("​debug",​ "​env"​)..
 +;;      debug
 +;;      calling process id = 20840598
 +;; res_nquerydomain(myhost01,​ test.lu, 1, 1)
 +;; res_query(myhost01.test.lu,​ 1, 1)
 +;; res_nmkquery(QUERY,​ myhost01.test.lu,​ IN, A)
 +;; res_send()
 +;; ->>​HEADER<<​- opcode: QUERY, status: NOERROR, id: 7136
 +;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
 +;;      myhost01.test.lu,​ type = A, class = IN
 +;; Querying server (# 1) address = 10.10.10.100
 +;; got answer:
 +;; ->>​HEADER<<​- opcode: QUERY, status: NOERROR, id: 7136
 +;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
 +;;      myhost01.test.lu,​ type = A, class = IN
 +myhost01.test.lu. ​   1M IN A         ​172.19.28.37
 +test.lu. ​                 1M IN NS        dns.test.lu.
 +dns.test.lu. ​            1M IN A         ​10.10.10.100
 +myhost01.test.lu is 10.10.10.37
 </​cli>​ </​cli>​
  
aix/aix_debug.1661871582.txt.gz · Last modified: 2022/08/30 16:59 by manu

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
GNU Free Documentation License 1.3 Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki