[sudo-users] EAS install

Jonathan Hansen jonathan at 23andme.com
Tue Sep 23 13:35:13 EDT 2008


I am trying to get an install of Enterprise Audit Shell running and
several links I saw pointed to this list as appropriate to ask
questions about it... if I am wrong I apologize in advance.

Would anyone know what this set of errors in the logs indicates after
seeing this on the terminal:

root at rssh:/var/log# easd
root at rssh:/var/log# eash
[i] trying 127.0.0.1:5554 ... connected.
ssl error: SSL_connect
ssl error: certificate verify failed
[i] exhausted list of log servers.
root at rssh:/var/log# tail -15 messages
Sep 22 17:16:38 rssh easd[11556]: debug1: (11556) using SSLv3 encryped
communication.
Sep 22 17:16:38 rssh easd[11556]: debug1: (11556) using configured
ciphers: HIGH:MEDIUM
Sep 22 17:16:38 rssh easd[11556]: debug1: (11556) listening for
incoming connections on port 5554.
Sep 22 17:16:38 rssh easd[11558]: easd started
Sep 22 17:16:44 rssh easd[11558]: debug1: (11558) accept(5) == 6
Sep 22 17:16:44 rssh easd[11558]: debug1: (11558) connection received
from 127.0.0.1:37092
Sep 22 17:16:44 rssh easd[11558]: debug1: (11558) calling fork
Sep 22 17:16:44 rssh easd[11560]: debug1: (11560) new connection -
forking child 11560
Sep 22 17:16:44 rssh easd[11560]: debug1: (11560) calling close(5)
Sep 22 17:16:44 rssh easd[11558]: debug1: (11558) calling close(6)
Sep 22 17:16:44 rssh easd[11560]: error: SSL_accept():
Sep 22 17:16:44 rssh easd[11560]: debug1: (11560) calling shutdown(6, SHUT_RDWR)
Sep 22 17:16:44 rssh easd[11560]: error: shutdown(6, SHUT_RDWR): Bad
file descriptor (9)
Sep 22 17:16:44 rssh easd[11560]: debug1: (11560) calling exit(1)
Sep 22 17:16:44 rssh easd[11558]: debug1: (11558) waitpid: reaped
child 11560 with a return code of 256
root at rssh:/var/log#

I have verified that the certs are in the proper place and they were
generated by eas' cert generation script so I am assuming they are in
the right format, though said assumption could be my issue.

Thanks,

Jonathan



More information about the sudo-users mailing list