Re: killer in the manual

> > Shouldnt we put this in cron? Also, the manual recommends to use
> > 512mb sized swap files for workstations with 256mb ram, currently we
> > create 32mb sized swapfiles. This is suitable for thin-clients but
> > quite useless for diskless workstations - shouldn't we raise this?
> > (For this we would probably need to raise harddisc requierments
> > again, but I dont see that as such a big problem.)
>
> As far as I know, there is no need to change this.  The thin clients
> will ask for more swap when running out, and the swap will be added in
> 32MB increments. :)

> Am Thursday, 5. November 2009 schrieb RalfGesellensetter:
> > Please follow recent IRC log on #debian-edu to find some alternative
> > approaches on clearing left-behind processes deliberately (rather
> >  than  killing arbitrary unidentified processes).
>
>
> Dear list, only now I find the time to sumarize some thoughts from IRC:
>
> <RalfG> h01ger: I start to understand what you dislike about killer. It
> kills processes not on purpose, but arbitrary -- like a redneck
> (alternative package name?) shooting at everything that doesn't match
> his patterns.
> <RalfG> I tend to agree that this approach is "bad" as it must fail as
> soon as you introduce new roles unknown to killer.
>
> <RalfG> On contrary, the clean-up-left-behind-processes-after-logout-
> script should follow a simple and clean policy like this:
> <RalfG> get a list of users who were logged in today - and if they
> aren't logged in anymore, kill _their_ processes.
> <RalfG> all needed for this can be found (again) in last.
> <RalfG> alternatively, you could follow /var/log/auth.log and wait for
> "logout" messages. But this log is on tjener, I think.
>
> <RalfG> Yet another approach could be to have processes of users killed,
> that are member in a given group (student) unless they are still logged
> in.
>
> <RalfG> h01ger: this command shows all user sessions that have been
> closed today:
> grep "session closed" /var/log/auth.log |grep -v "user root" | grep -v  
> \ "user daemon" | grep -v "user nobody" |grep "`LANG=C date +"%b %_d"`"
> \|cut "-d " -f12 |sort -u | grep ... | tr '[A-Z]' '[a-z]'
>
> <RalfG> Now find users who are still logged in:
> LANG=C last |grep "still logged in" | cut "-d " -f1 | sort -u
>
> <RalfG> note: here might be ambigious names as logins are truncated to 8
> characters.
> <RalfG> Now I could do a "grep -v" on every line there to remove still
> logged in users...
>
> <RalfG> rather than triggering the clean-up-left-behind-processes-after-
> logout-script every hour, wouldn't it be great just to write a watchdog
> for auth.log - something like "tail -f /var/log/auth.log" that issues a
> pkill whenever a (regular) user closes their sessioN?
> <RalfG> of course, this would mean, that all processes are killed of one
> of several sessions owned by the same user is closed (unless
> doublechecking "who").
> <RalfG> and, of course, this script should not regard old entries in
> auth.log in case it is started much after boot time
>
> Now, I think a combination of both should be possible (do the filtering
> on tail -f) -- and yes, of course, users who are permanently logged in
> will not be regarded (maybe by nightkill in debian-edu-config?).
>
> There was also a discussion that virtually the session manager (like
> LDM) should do the job in a propper way, but then, there is also KDM and
> GDM, and it is hard to convince their upstreams to find a common way of
> purging closed sessions. Hence the watchdog for auth.log seems to be a
> straight forward way to go (to me), what do you think?
>
> First steps could be auxialary scripts like test-if-user-is-logged-in
> (checking in who).
>
> Then I wonder, if there isn't a mother process to all processes run
> within a session, so that the only thing to do is killing this embedding
> process at logout time?

> El jue, 05-11-2009 a las 20:23 +0100, RalfGesellensetter escribió:
> > Am Thursday, 5. November 2009 schrieb RalfGesellensetter:
> > > Please follow recent IRC log on #debian-edu to find some alternative
> > > approaches on clearing left-behind processes deliberately (rather
> > >  than  killing arbitrary unidentified processes).
> >
> >
> > Dear list, only now I find the time to sumarize some thoughts from IRC:
> >
> > <RalfG> h01ger: I start to understand what you dislike about killer. It
> > kills processes not on purpose, but arbitrary -- like a redneck
> > (alternative package name?) shooting at everything that doesn't match
> > his patterns.
> > <RalfG> I tend to agree that this approach is "bad" as it must fail as
> > soon as you introduce new roles unknown to killer.
> >
> > <RalfG> On contrary, the clean-up-left-behind-processes-after-logout-
> > script should follow a simple and clean policy like this:
> > <RalfG> get a list of users who were logged in today - and if they
> > aren't logged in anymore, kill _their_ processes.
> > <RalfG> all needed for this can be found (again) in last.
> > <RalfG> alternatively, you could follow /var/log/auth.log and wait for
> > "logout" messages. But this log is on tjener, I think.
> >
> > <RalfG> Yet another approach could be to have processes of users killed,
> > that are member in a given group (student) unless they are still logged
> > in.
> >
> > <RalfG> h01ger: this command shows all user sessions that have been
> > closed today:
> > grep "session closed" /var/log/auth.log |grep -v "user root" | grep -v  
> > \ "user daemon" | grep -v "user nobody" |grep "`LANG=C date +"%b %_d"`"
> > \|cut "-d " -f12 |sort -u | grep ... | tr '[A-Z]' '[a-z]'
> >
> > <RalfG> Now find users who are still logged in:
> > LANG=C last |grep "still logged in" | cut "-d " -f1 | sort -u
> >
> > <RalfG> note: here might be ambigious names as logins are truncated to 8
> > characters.
> > <RalfG> Now I could do a "grep -v" on every line there to remove still
> > logged in users...
> >
> > <RalfG> rather than triggering the clean-up-left-behind-processes-after-
> > logout-script every hour, wouldn't it be great just to write a watchdog
> > for auth.log - something like "tail -f /var/log/auth.log" that issues a
> > pkill whenever a (regular) user closes their sessioN?
> > <RalfG> of course, this would mean, that all processes are killed of one
> > of several sessions owned by the same user is closed (unless
> > doublechecking "who").
> > <RalfG> and, of course, this script should not regard old entries in
> > auth.log in case it is started much after boot time
> >
> > Now, I think a combination of both should be possible (do the filtering
> > on tail -f) -- and yes, of course, users who are permanently logged in
> > will not be regarded (maybe by nightkill in debian-edu-config?).
> >
> > There was also a discussion that virtually the session manager (like
> > LDM) should do the job in a propper way, but then, there is also KDM and
> > GDM, and it is hard to convince their upstreams to find a common way of
> > purging closed sessions. Hence the watchdog for auth.log seems to be a
> > straight forward way to go (to me), what do you think?
> >
> > First steps could be auxialary scripts like test-if-user-is-logged-in
> > (checking in who).
> >
> > Then I wonder, if there isn't a mother process to all processes run
> > within a session, so that the only thing to do is killing this embedding
> > process at logout time?
>
>
> Just in case it might help: Last year when I given up using killer
> because of it killing ssh sessions, I implemented that kind of routine
> in ControlAula.
> In http://paste.debian.net/50868/ you can see the code (for 72 hours
> since now)
>
> When using gnome, one of the common zombie processes is gnome-panel, if
> an user logins with gnome-panel running as a zombie with his own login,
> the desktop is totally broken, so ControlAula is calling this killer()
> routine with a watch timer every 10 seconds.
>
> The approach is similar to yours, but using 'who' instead of 'last'. It
> just gets a list of the logged users and another list with the logged
> processes with their user id. It compares them and kills all the
> processes whose uid are not logged and between 1000 and 65535 (to avoid
> killing services and processes launched under the "nobody" user).
> It's quite simple and has been working perfectly for our purposes for
> about a year in our schools.
>
> Regards.
>

> Am Friday, 6. November 2009 schrieb RalfGesellensetter:
> > Dear José,
> >
> > thank you for sharing your interesting script
> > (and supporting my approach this way).
> > It is charmingly short - thanks to the power of Gambas
> > (even more charming!).
>
> As your script is quite short - and most likely under GPL,
> I dare attach it to this mail - so everybody can see the
> nice syntax of Gambas Basic.
>
> I might be able to test the script next Friday.
> >
> > I think I remember that it is not a big deal anymore to meet
> > the dependencies for running Gambas script - so I'd suggest
> > to add the package needed (gambas2-runtime?), as it won't be trivial
> > to tranlate your script to a shell [perl] script!?
>
> I remember that the Gambas IDE has an export filter to Debian packages.
> Assuming that all dependencies are set as needed, it shouldn't be a big
> deal to provide a first package for this.
>
> Sometimes, prolongued peeking pays off ;)
>
> Regards & thanks again
> Ralf

> [José L. Redrejo Rodríguez]
> > As many people don't feel confident with gambas I have translated
> > the script into python. It's attached to this email. For this script
> > to work, it must be executed as root.
>
> Very nice.  Perhaps we should replace the implementation in the killer
> package with this one?  Perhaps add support for reporting which
> processes are killed to the user or syslog, to get more of the
> features of the old killer program.
>

> >         if len(loggedusers) != 0:
> >             for user in loggedusers:
> >                 newID=commands.getoutput("getent passwd " + user + "|cut -f3 -d:")
> >                 uids[newID]=user
>
> One report of failure with the killer package is when the LDAP server
> is overloaded and fail to return user information.  Could it be an
> idea to try several times to look up user information if getent fail
> to return any information?
>

>[José L. Redrejo Rodríguez]
>> Sure, that's one of the needed things. Also, this should also be
>> "daemonized"
>
>Perhaps, or just run from cron.  The latter is easier, but require
>cron to be functional. :)
>
>> do you have any idea of a practical time interval to wait between
>> requests?
>
>Not sure what is needed to maximize the changes of success, but I
>would go with 3 tries with 5 seconds between them, and hope that was
>enough.

> On Mon, Nov 09, 2009 at 01:07:24PM +0100, Petter Reinholdtsen wrote:
> >[José L. Redrejo Rodríguez]
> >> Sure, that's one of the needed things. Also, this should also be
> >> "daemonized"
> >
> >Perhaps, or just run from cron.  The latter is easier, but require
> >cron to be functional. :)
> >
> >> do you have any idea of a practical time interval to wait between
> >> requests?
> >
> >Not sure what is needed to maximize the changes of success, but I
> >would go with 3 tries with 5 seconds between them, and hope that was
> >enough.
>
> If it is known what causes unreliability - e.g. LDAP sometimes
> unresponsive - then perhaps extend the script to do e.g. simple direct
> LDAP queries to verify if getent responses are likely to be reliable.
>
> (sorry if I misunderstood - I haven't followed this thread closely).