|Applies To||RSA Product Set: Security Analytics, NetWitness Logs & Packets|
O/S Version: EL5, EL6
|Issue||The root ( / ) partition may become 100% full on an RSA Security Analytics appliance for a variety of reasons and lighttpd logs could be one of them.|
|Tasks||Get the output of the commands below from the problematic appliance in order to identify which directory and file is taking the most.|
|Resolution||Using the above commands, you can identify whether or not most of the root partition is being utilized by a single log file for lighttpd service which is the web server used to host the RSA Security Analytics repository files.|
Issue the commands shown below to resolve the issue.
#service lighttpd stop
If you are unsure of any of the steps above or experience any issues, contact RSA Customer Support and quote this article number for further assistance.