[Linux-HA] "attempted replay attack" and "Message hist queue is
filling up"
Max Hofer
max.hofer at apus.co.at
Mon Jul 23 00:42:09 MDT 2007
On Saturday 21 July 2007, Patrick von der Hagen wrote:
> Am Freitag, den 20.07.2007, 17:54 +0200 schrieb Patrick von der Hagen:
> [...]
> > Any ideas how to recover?
> I finally decided to apply FAQ 31 to the issue and ignore that this FAQ explicitly mentions heartbeat 1.2.0. I have a bad feeling about it, but it seems to work.
Yep, ... somehow I had the feeling you had the UUID problem.
An other way to avoid the problem is using 'time' for hbgenmethod
(in /etc/ha.d/ha.cf). But make sure your machines use NTP to get
the current time.
I always felt that the reply attack protection is a pain in the ass. Specially
since most HA environments are in a kind of secure network environment.
I think some people would have a less hard time if the replay attack
protection would be "off" by default and we could enable it if we want.
king regards Max
More information about the Linux-HA
mailing list