• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 585
  • Last Modified:

Can I delete those core dumps created by IMSS?

This is using Trendmicro IMSS 7 with patch 2 on Solaris system. Recently, found that a lot of core dumps being created in /var/core. Pls see below:

   server[/var/core]#


w-------   1 root     root     33389279 Feb 23 12:24 core_server_imssmgr_0_0_1298435065_26795
-rw-------   1 root     root     33282751 Feb 23 12:48 core_server_imssmgr_0_0_1298436533_21682
-rw-------   1 root     root     33299167 Feb 23 13:24 core_server_imssmgr_0_0_1298438643_26711
-rw-------   1 root     root     33290975 Feb 23 13:48 core_server_imssmgr_0_0_1298440110_4516
-rw-------   1 root     root     33290975 Feb 23 14:03 core_server_imssmgr_0_0_1298441017_10194
-rw-------   1 root     root     33225439 Feb 23 14:15 core_server_imssmgr_0_0_1298441722_14551
-rw-------   1 root     root     33446591 Feb 23 14:38 core_server_imssmgr_0_0_1298443133_17897
-rw-------   1 root     root     33290975 Feb 23 14:49 core_server_imssmgr_0_0_1298443791_25065
-rw-------   1 root     root     33159903 Feb 23 15:25 core_server_imssmgr_0_0_1298445934_28561
-rw-------   1 root     root     33217215 Feb 23 15:43 core_server_imssmgr_0_0_1298446979_9880
-rw-------   1 root     root     33290975 Feb 23 16:03 core_server_imssmgr_0_0_1298448201_14907
-rw-------   1 root     root     33290975 Feb 23 16:31 core_server_imssmgr_0_0_1298449904_22112
-rw-------   1 root     root     33225439 Feb 23 16:53 core_server_imssmgr_0_0_1298451228_444

Can I delete all of them? What is the root cause?
0
Balack
Asked:
Balack
1 Solution
 
h3nnysCommented:
Firstly check the contents, usually they are just logs about activity on IMSS

if they are Logs you can delete them if not then its best to leave them be, most of the time they are just activity logs but now and then you will find that they contain info about system errors
0
 
BalackAuthor Commented:
Uncle,

How I know this is just normal activity log? I'm remotely from the server, and there are quite a number of such files, in which most of them in the size of 33 Mb.
0
 
omarfaridCommented:
did you find the type of content is in the files? you may try to see if these are text files or binary files.

You may run the command

file core_server_imssmgr*

if you are notr sure what are these files and you don't to keep them you may archive them to tape and the delete from disk
0
When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

 
robocatCommented:
If these are true core dumps, you can check this using the command

adb filename

If this is a core file, adb (or mdb) will recognise it. If so, you can safely delete those files, these are only useful for the software developers to determine why their software has crashed.

Getting so many core files in such a short time means that the IMSS processes crash a lot. Perhaps you should investigate if any more recent versions of the software exist.


0
 
upanwarCommented:
I agree with omarfarid, just compress these files and preserve that in your backup and then delete from disk. If you feel any challenge after deleting those files then you can just restore them from your backup.



0
 
BalackAuthor Commented:
In the first place, why there is such a number of such files appeared? No one seems able to answer this?
0
 
Joseph GanSystem AdminCommented:
Those logs depand on the scan policy of IMSS.
0
 
robocatCommented:

(provided these are true core files): Getting so many core files in such a short time means that the IMSS processes crash a lot. Each process crash corresponds to a core file that contains a dump of a crashed process.

0
 
m_aftabCommented:
if you want dignose of these core file or you want it to send support vandor, you should not delete these file.

These file are no where in use, you can treat as a log files.

0
 
BalackAuthor Commented:
hmmm
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now