Bug#1051349: slapd: DoS after some 'Too many open files'?
Quanah Gibson-Mount
quanah at fast-mail.org
Wed Sep 6 16:22:07 BST 2023
--On Wednesday, September 6, 2023 5:43 PM +0200 Patrice Duroux
<patrice.duroux at gmail.com> wrote:
> Package: slapd
> Version: 2.5.13+dfsg-5
> Severity: normal
>
> Dear Maintainer,
>
> This happens on one physical machine using a Debian Bookworm and only
> dedicated to NFS/LDAP services.
> I never faced this before for years with Bulleyes before upgrading to
> Bookworm.
>
> Looking into log files there are the following messages:
You need to increase the number of file descriptors available to slapd.
You're hitting this issue because Debian compiles with the
--enable-wrappers flag for tcp wrappers.
With systemd, you can change the number of file descriptors available with
the
"LimitNOFILE" option.
For example:
[Service]
...
LimitNOFILE=8192
To increase the limit to 8,192 available file descriptors to the slapd
process. I don't know what defaults Debian allows in regards to file
descriptors for slapd in their default package.
Regards,
Quanah
More information about the Pkg-openldap-devel
mailing list