AIDE Crontab cause high memory usage and trigger OOM-killer

psmc

3/4/23, 1:16 PM

In order to follow the CIS benchmark rule, our ubuntu apply the CIS hardened changes with the following ansible-playbook https://github.com/alivx/CIS-Ubuntu-20.04-Ansible

After apply these security rules, we notice that “AIDE” daily check cronjob will cause high memory usage and trigger OOM-killer

/usr/bin/aide.wrapper --config /etc/aide/aide.conf --check

For instance, we run the FRR as our network solution on ubuntu During the aide daily checking jobs, FRR service occurred BGP down then invoked oom-killer We notice that oom-killer killed the “aide” process.

So my question is, if my server files changes (e.g. /var/lib/) frequently, should I turn off the AIDE cronjob to detected changes and write into aide db (cause high memory usage) If AIDE job turned off, is this a a threat to os security?

Thanks a lot.

0 + 0

server

20.04

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: AIDE Crontab cause high memory usage and trigger OOM-killer

TH: AIDE Crontab ทำให้เกิดการใช้หน่วยความจำสูงและทริกเกอร์ OOM-killer

RO: AIDE Crontab provoacă o utilizare mare a memoriei și declanșează OOM-killer

RU: AIDE Crontab вызывает чрезмерное использование памяти и запускает OOM-killer

VI: AIDE Crontab gây sử dụng bộ nhớ cao và kích hoạt OOM-killer

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.