I have a completely idle desktop system running 14.1p5 which is exhibiting serious I/O and performance problems due entirely to a
Since upgrading to 14.1 on several servers I have noticed that the security checks have seeming taken over those machines at the expense of actual processing. Is my impression warented? Why are these checks taking so long to run and consuming so many resources.? What is a reasonable alternative to the amount of security checking turned on by default?
periodic security job.
Code:
[root@vhost01 ~ (master)]# freebsd-version -kru
14.1-RELEASE-p5
14.1-RELEASE-p5
14.1-RELEASE-p5
[root@vhost01 ~ (master)]# top -m io
last pid: 11793; load averages: 1.35, 1.30, 1.21 up 14+01:41:50 09:47:05
73 processes: 2 running, 70 sleeping, 1 zombie
CPU: 5.0% user, 0.0% nice, 1.6% system, 0.0% interrupt, 93.4% idle
Mem: 117M Active, 2276M Inact, 24M Laundry, 28G Wired, 767M Free
ARC: 21G Total, 17G MFU, 1534M MRU, 10M Anon, 377M Header, 1271M Other
12G Compressed, 31G Uncompressed, 2.50:1 Ratio
Swap: 6144M Total, 6144M Free
PID USERNAME VCSW IVCSW READ WRITE FAULT TOTAL PERCENT COMMAND
73293 lyneak_hll 0 22 0 0 0 0 0.00% python3.11
10570 root 69 0 97 0 0 97 97.00% pkg
11774 root 2 0 0 0 0 0 0.00% top
4631 root 5 0 0 0 0 0 0.00% sshd
2354 root 4 0 0 2 0 2 2.00% syslogd
11288 byrnejb_hl 4 0 0 0 0 0 0.00% sshd
2767 root 8 0 0 0 0 0 0.00% powerd
2610 root 4 0 0 0 0 0 0.00% arpwatch
4554 root 2 0 0 1 0 1 1.00% syslogd
11416 byrnejb_hl 4 0 0 0 0 0 0.00% sudo
2764 ntpd 2 0 0 0 0 0 0.00% ntpd
577 _pflogd 4 0 0 0 0 0 0.00% pflogd
2706 root 1 0 0 0 0 0 0.00% rpc.statd
2720 root 1 0 0 0 0 0 0.00% rpc.lockd
2116 root 0 0 0 0 0 0 0.00% moused
2137 root 0 0 0 0 0 0 0.00% devd
68933 root 0 0 0 0 0 0 0.00% bash
2789 dhcpd 0 0 0 0 0 0 0.00% dhcpd
4884 root 0 0 0 0 0 0 0.00% bsdisks
2866 root 0 0 0 0 0 0 0.00% cron
[root@vhost01 ~ (master)]# gstat -I5s | sort -rn -k9 | head ### show disc i/o busy
4 88 88 1360 24.1 0 0 0.0 100.3 ada2p3
4 88 88 1360 24.1 0 0 0.0 100.3 ada2
0 107 107 1549 16.2 0 0 0.0 84.8 ada0p3
0 107 107 1549 16.2 0 0 0.0 84.8 ada0
0 106 106 1473 15.7 0 0 0.0 80.7 ada1p3
0 106 106 1473 15.7 0 0 0.0 80.7 ada1
dT: 5.025s w: 5.000s
L(q) ops/s r/s kBps ms/r w/s kBps ms/w %busy Name
0 0 0 0 0.0 0 0 0.0 0.0 zvol/zroot/vm/vhp3k101/disk0p3
0 0 0 0 0.0 0 0 0.0 0.0 zvol/zroot/vm/vhp3k101/disk0p2
[root@vhost01 ~ (master)]# date
Thu Nov 21 09:48:32 EST 2024
[root@vhost01 ~ (master)]# ps -auwx | grep pkg
root 10561 0.0 0.0 13376 3092 - I 09:12 0:00.00 /bin/sh - /usr/local/etc/periodic/security/460.pkg-checks
root 10565 0.0 0.0 13376 3084 - I 09:12 0:00.00 /bin/sh - /usr/local/etc/periodic/security/460.pkg-checks
root 10566 0.0 0.0 24644 12232 - I 09:12 0:00.00 /usr/local/sbin/pkg check -qsa
root 10570 0.0 0.6 266860 198676 - D 09:12 0:25.36 /usr/local/sbin/pkg check -qsa
root 11852 0.0 0.0 12808 2448 1 S+ 09:48 0:00.00 grep --color=auto pkg
