43913 - Port vulnerability scanning software might cause SAS® Scalable Performance Data Server to fail

Problem Note 43913: Port vulnerability scanning software might cause SAS® Scalable Performance Data Server to fail

Port vulnerability scanning software such as Qualys and Nessus might cause SAS Scalable Performance Data Server to fail with a number of different error conditions.

These security packages have the ability to perform non-intrusive port probing on all open ports, which, when done on SPD Server ports, might cause SPD Server processes to fail abruptly without writing to the log.

You might also see the following error messages written repeatedly (multiple times per second) to the SPD Server log file:

hpdoper: accept failed for operator connection: errno=57 Invalid packet header

Note that this issue can impact your file system if the log is allowed to continue to grow in size.

Workarounds

In some cases, you can configure the port-scanning software so that it does not put SAS SPD Server into a panic state.
Otherwise, it might be necessary to exclude SPD Server ports from the scan.

Click the Hot Fix tab in this note to access the hot fix for this issue.

Operating System and Release Information

Product Family	Product	System	Product Release		SAS Release
Product Family	Product	System	Reported	Fixed*	Reported	Fixed*
SPDS	Scalable Performance Data Server	Solaris for x64	4.52 HF1	5.1 HF5	9.2 TS2M3
		Linux for x64	4.52 HF1	5.1 HF5	9.2 TS2M3
		Microsoft Windows Server 2008 for x64	4.52 HF1	5.1 HF5	9.2 TS2M3
		Microsoft Windows Server 2003 for x64	4.52 HF1	5.1 HF5	9.2 TS2M3
		Microsoft® Windows® for x64	4.52 HF1	5.1 HF5	9.2 TS2M3
		Microsoft Windows Server 2003 Enterprise 64-bit Edition	4.52 HF1	5.1 HF5	9.2 TS2M3
		Microsoft Windows Server 2003 Datacenter 64-bit Edition	4.52 HF1	5.1 HF5	9.2 TS2M3
		HP-UX IPF	4.52 HF1	5.1 HF5	9.2 TS2M3
		64-bit Enabled Solaris	4.52 HF1	5.1 HF5	9.2 TS2M3
		64-bit Enabled HP-UX	4.52 HF1	5.1 HF5	9.2 TS2M3
		64-bit Enabled AIX	4.52 HF1	5.1 HF5	9.2 TS2M3

* For software releases that are not yet generally available, the Fixed Release is the software release in which the problem is planned to be fixed.

A fix for this issue for SAS Scalable Performance Data Server 5.1 is available at:

https://tshf.sas.com/techsup/download/hotfix/HF2/N49.html#43913

Type:	Problem Note
Priority:	medium

Date Modified:	2020-02-25 11:39:10
Date Created:	2011-08-04 14:35:07

Support

Problem Note 43913: Port vulnerability scanning software might cause SAS® Scalable Performance Data Server to fail

Workarounds

Operating System and Release Information