Description: "In environments with malware and end-point scanning activities occurring, some network events can cause Splunk to generate TcpChannel - Error trying to begin socket accept: An invalid argument was supplied. messages in splunkd.log. (SPL-74902, SPL-76208)"
This is fixed in 6.0.1, but it is not clear for me if I have to upgrade the indexer, the forwarder, or both?
The question of "indexer, forwarder or both" applies to everything in the release notes, but it is this specific issue that interests me right now.
I did encounter the problem again after upgrading only the server, so I guess the answer is yes. It would be nice to have information like this from a more official source, though...
I did encounter the problem again after upgrading only the server, so I guess the answer is yes. It would be nice to have information like this from a more official source, though...