Kernel - OSSEC Wiki

From OSSEC Wiki

Jump to: navigation, search

[edit]

Log Samples from the Linux kernel

NFS incompability between Linux and Solaris (not security related).:

Feb 28 07:46:15 bs11 kernel: svc: unknown program 100227 (me 100003)

System shutdown:

Jun 1 22:20:05 secserv kernel: Kernel logging (proc) stopped.

Jun 1 22:20:05 secserv kernel: Kernel log daemon terminating.

Jun 1 22:20:06 secserv exiting on signal 15

Nov 27 08:05:57 galileo kernel: Kernel logging (proc) stopped.

Nov 27 08:05:57 galileo kernel: Kernel log daemon terminating.

Nov 27 08:05:57 galileo exiting on signal 15

ADSL monitor:

Nov 22 02:35:36 thecla2 kernel: ATM dev 0: ADSL line is up (2752 kb/s down | 448 kb/s up)

description:

May 21 20:22:28 slacker2 kernel: tcp_parse_options: Illegal window scaling value 200 >14 received.

Kernel level hardware SCSI error (not security related).:

Aug 30 10:06:11 newfish kernel: >>>>>>>>>>>>>>>>>> Dump Card State Begins <<<<<<<<<<<<<<<<<

Aug 30 10:06:11 newfish kernel: scsi1: Dumping Card State in Message-out phase, at SEQADDR 0x16b

Aug 30 10:06:11 newfish kernel: Card was paused

Aug 30 10:06:11 newfish kernel: ACCUM = 0xa0, SINDEX = 0x61, DINDEX = 0xe4, ARG_2 = 0x1

Aug 30 10:06:11 newfish kernel: HCNT = 0x0 SCBPTR = 0x1

Aug 30 10:06:11 newfish kernel: SCSIPHASE[0x0] SCSISIGI[0xa4] ERROR[0x0] SCSIBUSL[0xd]

Aug 30 10:06:11 newfish kernel: LASTPHASE[0xa0] SCSISEQ[0x12] SBLKCTL[0xa] SCSIRATE[0xc2]

Aug 30 10:06:11 newfish kernel: SEQCTL[0x10] SEQ_FLAGS[0x40] SSTAT0[0x0] SSTAT1[0x0]

Aug 30 10:06:11 newfish kernel: SSTAT2[0x0] SSTAT3[0x0] SIMODE0[0x8] SIMODE1[0xac]

Aug 30 10:06:11 newfish kernel: SXFRCTL0[0x88] DFCNTRL[0x0] DFSTATUS[0x89]

Aug 30 10:06:11 newfish kernel: STACK: 0xe1 0xe1 0x163 0x178

Aug 30 10:06:11 newfish kernel: SCB count = 12

Aug 30 10:06:11 newfish kernel: Kernel NEXTQSCB = 11

Aug 30 10:06:11 newfish kernel: Card NEXTQSCB = 4

Aug 30 10:06:12 newfish kernel: QINFIFO entries: 4

Aug 30 10:06:12 newfish kernel: Waiting Queue entries:

Aug 30 10:06:12 newfish kernel: Disconnected Queue entries: 2:7

Aug 30 10:06:12 newfish kernel: QOUTFIFO entries:

Aug 30 10:06:12 newfish kernel: Sequencer Free SCB List: 0 6 7 5 4 3 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31

Aug 30 10:06:12 newfish kernel: Sequencer SCB Info:

Aug 30 10:06:12 newfish kernel: 0 SCB_CONTROL[0x0] SCB_SCSIID[0x17] SCB_LUN[0x0] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 1 SCB_CONTROL[0x64] SCB_SCSIID[0x17] SCB_LUN[0x0] SCB_TAG[0x5]

Aug 30 10:06:12 newfish kernel: 2 SCB_CONTROL[0x64] SCB_SCSIID[0x17] SCB_LUN[0x0] SCB_TAG[0x7]

Aug 30 10:06:12 newfish kernel: 3 SCB_CONTROL[0xe0] SCB_SCSIID[0x7] SCB_LUN[0x0] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 4 SCB_CONTROL[0xe0] SCB_SCSIID[0x7] SCB_LUN[0x0] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 5 SCB_CONTROL[0xe0] SCB_SCSIID[0x17] SCB_LUN[0x0] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 6 SCB_CONTROL[0x0] SCB_SCSIID[0x17] SCB_LUN[0x0] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 7 SCB_CONTROL[0xe0] SCB_SCSIID[0x17] SCB_LUN[0x0] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 8 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 9 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 10 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 11 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 12 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 13 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 14 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 15 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 16 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 17 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:12 newfish kernel: 18 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 19 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 20 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 21 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 22 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 23 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 24 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 25 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 26 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 27 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 28 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 29 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 30 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: 31 SCB_CONTROL[0x0] SCB_SCSIID[0xff] SCB_LUN[0xff] SCB_TAG[0xff]

Aug 30 10:06:13 newfish kernel: Pending list:

Aug 30 10:06:13 newfish kernel: 7 SCB_CONTROL[0x60] SCB_SCSIID[0x17] SCB_LUN[0x0]

Aug 30 10:06:13 newfish kernel: 4 SCB_CONTROL[0x74] SCB_SCSIID[0x17] SCB_LUN[0x0]

Aug 30 10:06:13 newfish kernel: 5 SCB_CONTROL[0x64] SCB_SCSIID[0x17] SCB_LUN[0x0]

Aug 30 10:06:13 newfish kernel: Kernel Free SCB list: 1 0 2 3 6 10 9 8

Aug 30 10:06:13 newfish kernel: DevQ(0:0:0): 0 waiting

Aug 30 10:06:13 newfish kernel: DevQ(0:1:0): 0 waiting

Aug 30 10:06:13 newfish kernel: DevQ(0:6:0): 0 waiting

Aug 30 10:06:13 newfish kernel:

Aug 30 10:06:13 newfish kernel: <<<<<<<<<<<<<<<<< Dump Card State Ends >>>>>>>>>>>>>>>>>>

Aug 30 10:06:13 newfish kernel: Recovery SCB completes

Aug 30 10:06:13 newfish kernel: (scsi1:A:1:0): Device is disconnected, re-queuing SCB

Aug 30 10:06:13 newfish kernel: Recovery code sleeping

Aug 30 10:06:13 newfish kernel: Recovery code awake

Aug 30 10:06:13 newfish kernel: Timer Expired

Aug 30 10:06:13 newfish kernel: aic7xxx_abort returns 0x2003

Aug 30 10:06:13 newfish kernel: scsi1:0:1:0: Attempting to queue a TARGET RESET message

Aug 30 10:06:13 newfish kernel: CDB: 0x28 0x0 0x4 0x7a 0x65 0xcf 0x0 0x0 0x10 0x0

Aug 30 10:06:13 newfish kernel: aic7xxx_dev_reset returns 0x2003

Aug 30 10:06:13 newfish kernel: Recovery SCB completes

Retrieved from "http://ossec.net/wiki/index.php/Kernel"

From OSSEC Wiki

Log Samples from the Linux kernel

Views

Personal tools

Navigation

Documentation

Search