httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ben Laurie <...@algroup.co.uk>
Subject Re: Forensic Logging
Date Tue, 30 Dec 2003 17:38:16 GMT
Bill Stoddard wrote:

> Bill Stoddard wrote:
> 
>> Ben Laurie wrote:
>>
>>> Bill Stoddard wrote:
>>>
>>>> Ben Laurie wrote:
>>>>
>>>>> If it does nothing unless a file is specified, why not enable by 
>>>>> default?
>>>>
>>>>
>>>>
>>>>
>>>> Like Jeff, I am more interested in this for debugging process 
>>>> crashes that are not necessarily related to attacks. Might be useful 
>>>> to enable this function by default in a mode where it records 
>>>> information in an in-process buffer that can easily be sniffed out 
>>>> of a core file (tag the buffer with an eye catcher).
>>>
>>>
>>>
>>>
>>> Hmmm. The information is easily retrieved from the request structure, 
>>> why not just find that?
>>>
>>
>> It can be difficult to find the request that caused the problem in a 
>> threaded mpm.
>>
>> Bill
>>
> More explanation needed... I've seen too many core dumps with unusable 
> backtraces due to stack corruption (nearly always traced to code for 
> which I don't have the source, unfortunately).  So, yea this idea is 
> probably a bit out of scope for mod_forensic. Just thinking out loud.

There's certainly a variant on it that does what you describe, yeah. Not 
really the same thing, though.

Cheers,

Ben.

-- 
http://www.apache-ssl.org/ben.html       http://www.thebunker.net/

"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff

Mime
View raw message