On Tue, 2003-04-22 at 19:23, Ralf Hildebrandt wrote:
> * Henrik Nordstrom <hno@squid-cache.org>:
>
> > Related Note:
> >
> > Many OS:es deny core file generation of processes started as root to
> > protect from information leakage of root-only information. To
> > increase the chance of a core dump being generated it is a good idea
> > to start Squid as the cache_effective_user, not as root.
> >
> > One relatively reliable test to see if your OS falls into this
> > category is to try to trace the Squid process with truss/strace as
> > the cache_effective_user. If you are not allowed to trace the process
> > as the cache_effective_user then you most likely won't see a core
> > dump generated on segmentation fault or other fatal errors.
>
> Argh, I'm on one of those OS'es. And now?
> If I try to start it as squid:nogroup, then I barfs about being unable
> to
> Apr 22 11:22:24 spiderman squid[4130]: [ID 702911 local4.alert] Cannot open HTTP Port
>
> since it cannot bind to port 888 as unprivileged user.
Michael Lightfoot had some trouble getting cores on Solaris - he
suggested "Apparently Solaris 9 need to be configured to produce them
(see the man page for coreadm.)"
Hope that helps...
Cheers,
Rob
-- GPG key available at: <http://users.bigpond.net.au/robertc/keys.txt>.
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:15:09 MST