Tim Hughes's questions

I would like to create a isolated team in AWS such that they have access to EC2/S3 etc but cannot see the resources created by the master account.

Ideally I would give this team access to all the services in AWS but I don't want them touching the production services that are currently running in the account. The billing all needs to go through the master account but it would be good if it was broken down in to teams/projects for budget requirements.

I also need some uses to be in multiple teams which looking at Organizations is not possible.

             +--------+
             | Master |
             +--------+
                 |
    +------------------------------+
    |               |              |
 +---------+   +---------+  +---------+
 |Project A|   |Project B|  |Project C|
 +----------   +---------+  +---------+
     |  |        |     |           |
     |  +---+  +-+     |           |
     |      |  |       |           |  
 +------+  +------+  +------+  +------+
 |User 1|  |User 2|  |User 3|  |User 4|
 +------+  +------+  +------+  +------+

I upgraded openldap from openldap-2.4.39-8.el6.x86_64 to 2.4.40-12.el6.x86_64 and after restarting the server i get the following error. I am trying to work out how to recover as I don't have a backup.

586d0afc <<< dnNormalize: <cn=write>
586d0afc backend_startup_one: starting "dc=custsvc,dc=mycompany"
586d0afc bdb_db_open: "dc=custsvc,dc=mycompany"
586d0afc bdb_db_open: database "dc=custsvc,dc=mycompany": dbenv_open(/var/lib/ldap).
586d0afc bdb(dc=custsvc,dc=mycompany): file id2entry.bdb has LSN 1/720219, past end of log at 1/600
586d0afc bdb(dc=custsvc,dc=mycompany): Commonly caused by moving a database from one database environment
586d0afc bdb(dc=custsvc,dc=mycompany): to another without clearing the database LSNs, or by removing all of
586d0afc bdb(dc=custsvc,dc=mycompany): the log files from a database environment
586d0afc bdb(dc=custsvc,dc=mycompany): /var/lib/ldap/id2entry.bdb: unexpected file type or format
586d0afc bdb_db_open: database "dc=custsvc,dc=mycompany": db_open(/var/lib/ldap/id2entry.bdb) failed: Invalid argument (22).
586d0afc ====> bdb_cache_release_all
586d0afc backend_startup_one (type=bdb, suffix="dc=custsvc,dc=mycompany"): bi_db_open failed! (22)
586d0afc slapd shutdown: initiated
586d0afc ====> bdb_cache_release_all
586d0afc bdb_db_close: database "dc=custsvc,dc=mycompany": alock_close failed
586d0afc slapd destroy: freeing system resources.
586d0afc slapd stopped.

I am running cron with -m off to stop it sending email and then the -s option is supposed to send all output to syslog.

Cron cmdline is

crond -s -m off

My cron job for testing this is

* * * * * root /bin/echo hello

What I see in /var/log/cron is

Jun 17 17:06:01 www08 CROND[4165]: h<FF>

Basically all I get is the first character h and then <FF>

If I change the cron job to be

* * * * * root /bin/echo world

Then I get the first character w and then <FF>

Ultimately, what I am after is a way of getting all output from cronjobs logged to syslog so that I can manage them with our log alerting system.

I dont want to modify all the cron jobs as some are put there automatically from rpm packages and others by different departments. I am after a solution that sorts this issue once and for all rather than constantly appending 2>&1 | logger -t myscriptname to the end of every cron job on 100 machines