Environment
- EDR (formerly CB Response) Sensor: 6.x
- Linux: All Supported Versions
Objective
To generate an strace output for the cbdaemon process for troubleshooting purposes.
Resolution
- Get the PID of the cbdaemon process:
# ps -ef | grep cbdaemon
- Run:
# strace -f -p <PID> -o strace.out
- where <PID> is the PID of the cbdaemon process from step 1.
- Reproduce the issue being observed (if applicable)
- Press Ctrl-c to cancel after the reproducing the issue.
- Upload the resulting strace.out file to CB Vault.
Additional Notes
- The strace package is required to run these steps.