This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Talpa errors on Linux systems since update

Hey all,

Our Linux systems all updated to SAV version 5.0 yesterday. While the upgrade seemed to go smooth, and appears to be working, our systems have been generating this error fairly regularly:

kernel: talpa-vetting: [intercepted 12607-12608-12608] failed to openDentry -13 - trying open of /usr/bin/sudo

The numbers in the intercepted brackets are always different, but always have the same pattern of a number, followed by that number +1 for the next 2.

Doesn't seem to be causing a problem that I can see, but I'm getting all kinds of email notifications from it because it has the word "fail" in the report.

The systems generating these messages are running CentOS 6.

This thread was automatically locked due to age.

Parents

0 DouglasLeeder over 11 years ago

I suspect you are running SAV 9.6.1 which was more widely released yesterday. This is the first time the 1.17 version of Talpa was released to recommended, and we're seen reports of the error.
The cause is a debug message which was accidently left at the err message level. The file in question was executed by a user who didn't have read access to the file. The file was still scanned, after a backup open method was used to access the file.
:50082
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 DouglasLeeder over 11 years ago

I suspect you are running SAV 9.6.1 which was more widely released yesterday. This is the first time the 1.17 version of Talpa was released to recommended, and we're seen reports of the error.
The cause is a debug message which was accidently left at the err message level. The file in question was executed by a user who didn't have read access to the file. The file was still scanned, after a backup open method was used to access the file.
:50082
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data