Handling CSF Mail Alerts

Nov 5, 2009

We have about 100 servers using CSF, and CSF is generating A LOT of mail alerts.. which is causing us to receive over 1000 mails daily, just from CSF alerts.. this doesn't include support emails or others.

My question..

How do you handle mail alerts when you have lot of servers? See... i can not waste 5 hours reading every mail.. even if I start deleting those mails a lot of important and critical alerts can be erased in the process..

How do you filter or handle this kind of things?

View 0 Replies


ADVERTISEMENT

SMS Alerts

Feb 4, 2007

Does anyone know of a service whic will allow a webmaster of a website to send news alerts via SMS to visitors mobile phones?

View 2 Replies View Related

Php.ini Error Handling

Oct 15, 2007

If I have a php page with no errors, everything works fine. If I remove a semicolon so it should give me an error, it displays nothing but a white page... Also, there is no error_log created.

php.ini error config:

Code:
;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
; Error handling and logging ;
;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;

; error_reporting is a bit-field. Or each number up to get desired error
; reporting level
; E_ALL - All errors and warnings
; E_ERROR - fatal run-time errors
; E_WARNING - run-time warnings (non-fatal errors)
; E_PARSE - compile-time parse errors
; E_NOTICE - run-time notices (these are warnings which often result
; from a bug in your code, but it's possible that it was
; intentional (e.g., using an uninitialized variable and
; relying on the fact it's automatically initialized to an
; empty string)
; E_CORE_ERROR - fatal errors that occur during PHP's initial startup
; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's
; initial startup
; E_COMPILE_ERROR - fatal compile-time errors
; E_COMPILE_WARNING - compile-time warnings (non-fatal errors)
; E_USER_ERROR - user-generated error message
; E_USER_WARNING - user-generated warning message
; E_USER_NOTICE - user-generated notice message
;
; Examples:
;
; - Show all errors, except for notices
;
;error_reporting = "E_ALL"
;
; - Show only errors
;
;error_reporting = E_COMPILE_ERROR|E_ERROR|E_CORE_ERROR
;
; - Show all errors except for notices
;
error_reporting = E_ALL & ~E_NOTICE

; Print out errors (as a part of the output). For production web sites,
; you're strongly encouraged to turn this feature off, and use error logging
; instead (see below). Keeping display_errors enabled on a production web site
; may reveal security information to end users, such as file paths on your Web
; server, your database schema or other information.
display_errors = On

; Even when display_errors is on, errors that occur during PHP's startup
; sequence are not displayed. It's strongly recommended to keep
; display_startup_errors off, except for when debugging.
display_startup_errors = Off

; Log errors into a log file (server-specific log, stderr, or error_log (below))
; As stated above, you're strongly advised to use error logging in place of
; error displaying on production web sites.
log_errors = On

; Set maximum length of log_errors. In error_log information about the source is
; added. The default is 1024 and 0 allows to not apply any maximum length at all.
;log_errors = On;

; Do not log repeated messages. Repeated errors must occur in same file on same
; line until ignore_repeated_source is set true.
ignore_repeated_errors = Off

; Ignore source of message when ignoring repeated messages. When this setting
; is On you will not log errors with repeated messages from different files or
; sourcelines.
ignore_repeated_source = Off

; If this parameter is set to Off, then memory leaks will not be shown (on
; stdout or in the log). This has only effect in a debug compile, and if
; error reporting includes E_WARNING in the allowed list
report_memleaks = On

; Store the last error/warning message in $php_errormsg (boolean).
track_errors = Off

; Disable the inclusion of HTML tags in error messages.
;html_errors = Off

; If html_errors is set On PHP produces clickable error messages that direct
; to a page describing the error or function causing the error in detail.
; You can download a copy of the PHP manual from http://www.php.net/docs.php
; and change docref_root to the base URL of your local copy including the
; leading '/'. You must also specify the file extension being used including
; the dot.
;docref_root = "/phpmanual/"
;docref_ext = .html

; String to output before an error message.
;error_prepend_string = "<font color=ff0000>"

; String to output after an error message.
;error_append_string = "</font>"

; Log errors to specified file.
error_log = "error_log"

; Log errors to syslog (Event Log on NT, not valid in Windows 95).
;error_log = error_log;

View 8 Replies View Related

CSF Firewall Email Alerts

Feb 17, 2008

Probably an easy question and I am just not seeing it, but how do you set which email address you want CSF alerts sent to?

View 5 Replies View Related

LFD Process Email Alerts

May 4, 2009

How to stop lfd mail from csf as Suspicious process running under user and Excessive resource usage?

View 7 Replies View Related

Handling Abuse From Your Own Customers

May 31, 2008

I was wondering what other people did to prevent their networks from being used as platforms for network abuse. I just setup an inward facing snort server, myself- But I was wondering what other providers (especially other low-cost VPS providers)

View 2 Replies View Related

Spam Handling Scripts

Oct 17, 2007

Past few days - landed on the list of a couple of virulent spammers.

Activated:

Box trapper
Spam assassin
Outlook filter

The combo trips everything very accurately into a junk folder in outlook.

Wondering if theres a script solution to kill at the server, with minimal processing. I'm using cpanel/whm.

Scum sources include tersatig (dot)cn and few other ips.

Also if possible, way to wipe all .cn/.ru/.ro etc at the server.

View 2 Replies View Related

NUMPROC Black Alerts On VPS

Feb 12, 2007

I have started having daily numproc black alerts on my VPS. Tech Support have increased the numproc limit already to 1500 but say that I will need a dedicated server, that's the last I have heard. I'd like to know if there is anything I can do to limit this numproc problem without the need to get a dedicated server. The numproc alerts seem to be getting more frequent but the visitors to the site are not increasing. Here are the details:

2 x AMD Opteron(tm) Processor 244, 904.127 MHz, cache size: 1024 KB
Linux 2.6.8-022stab078.21-enterprise #1
Apache/1.3.36 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.2 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.27 OpenSSL/0.9.7a
Cpanel

Only one site is hosted on the VPS. Includes phpbb forum & various php / mysql sections like an affiliate store & photo gallery. Averaging about 11000 visitors/day
I tried to run /proc/user_beancounters & ps axv commands when the numproc was maxed this morning but could not log in to run it so these are the ones I ran yesterday.

Code:
uid resource held maxheld barrier limit failcnt
132: kmemsize 13786145 13803842 39485440 40632320 0
lockedpages 0 0 1024 1024 0
privvmpages 110039 110045 262144 278528 17
shmpages 731 731 86016 86016 0
dummy 0 0 0 0 0
numproc 683 683 1500 1500 4709595
physpages 62578 62580 0 2147483647 0
vmguarpages 0 0 135168 2147483647 0
oomguarpages 66597 66599 104448 2147483647 0
numtcpsock 47 49 1440 1440 0
numflock 11 11 752 824 0
numpty 1 1 64 64 0
numsiginfo 0 1 1024 1024 0
tcpsndbuf 92552 112604 6881280 10813440 0
tcprcvbuf 692 1384 6881280 10813440 0
othersockbuf 98524 103180 4504320 8388608 0
dgramrcvbuf 0 0 1048576 1048576 0
numothersock 123 123 1440 1440 0
dcachesize 619920 622790 9093120 9666560 0
numfile 2434 2435 23280 23280 0
dummy 0 0 0 0 0
dummy 0 0 0 0 0
dummy 0 0 0 0 0
numiptent 47 47 512 512 0

Code:
PID TTY STAT TIME MAJFL TRS DRS RSS %MEM COMMAND
1 ? Ss 0:00 0 26 1593 552 0.0 init
15751 ? Ss 0:00 0 28 1495 596 0.0 syslogd -m 0
15761 ? S 0:00 0 10 1437 456 0.0 /usr/sbin/courierlogger -pid=/var/spool/authdaemon/pid -facility=mail -start /usr/libexec/courier-authlib/authdaemond
15762 ? S 0:00 0 13 1782 576 0.0 /usr/libexec/courier-authlib/authdaemond
15786 ? S 0:00 0 13 1782 616 0.0 /usr/libexec/courier-authlib/authdaemond
15787 ? S 0:00 0 13 1782 596 0.0 /usr/libexec/courier-authlib/authdaemond
15788 ? S 0:00 0 13 1782 616 0.0 /usr/libexec/courier-authlib/authdaemond
15789 ? S 0:00 0 13 1782 616 0.0 /usr/libexec/courier-authlib/authdaemond
15790 ? S 0:00 0 13 1782 584 0.0 /usr/libexec/courier-authlib/authdaemond
15799 ? Ssl 0:00 8 269 39030 2664 0.0 /usr/sbin/named -u named
15814 ? Ss 0:01 3 296 3711 1704 0.0 /usr/sbin/sshd
15825 ? Ss 0:00 2 138 1933 864 0.0 xinetd -stayalive -pidfile /var/run/xinetd.pid
15836 ? S 0:00 0 573 1570 1068 0.0 /bin/sh /usr/bin/mysqld_safe --datadir=/var/lib/mysql --pid-file=/var/lib/mysql/server.surfing-waves.com.pid
15861 ? Sl 0:01 40 4000 108171 26516 0.7 /usr/sbin/mysqld --basedir=/ --datadir=/var/lib/mysql --user=mysql --pid-file=/var/lib/mysql/server.surfing-waves.com.pid --skip-external-locking
15907 ? S 0:00 0 829 8938 7388 0.2 chkservd
15923 ? S 0:00 0 10 1441 468 0.0 /usr/sbin/courierlogger -pid=/var/run/imapd.pid -start -name=imapd /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 143 /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15924 ? S 0:00 0 44 1515 512 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 143 /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15934 ? S 0:00 0 10 1441 400 0.0 /usr/sbin/courierlogger -pid=/var/run/imapd-ssl.pid -start -name=imapd-ssl /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 993 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15935 ? S 0:00 0 44 1515 492 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 993 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15940 ? S 0:00 0 10 1441 472 0.0 /usr/sbin/courierlogger -pid=/var/run/pop3d.pid -start -name=pop3d /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 110 /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15941 ? S 0:00 0 44 1515 512 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 110 /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15946 ? S 0:00 0 10 1441 400 0.0 /usr/sbin/courierlogger -pid=/var/run/pop3d-ssl.pid -start -name=pop3d-ssl /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 995 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15950 ? S 0:00 0 44 1515 492 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 995 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15971 ? Ss 0:00 0 678 6669 1880 0.0 /usr/sbin/exim -bd -q60m
15977 ? Ss 0:00 0 678 6669 1800 0.0 /usr/sbin/exim -tls-on-connect -bd -oX 465
15982 ? S 0:00 0 829 2214 1584 0.0 antirelayd
16024 ? Ss 0:00 1 829 24742 19592 0.5 /usr/bin/spamd -d --allowed-ips=127.0.0.1 --pidfile=/var/run/spamd.pid --max-children=5
16046 ? Ss 0:07 2 533 13126 5752 0.1 /usr/local/apache/bin/httpd -DSSL
16057 ? Ss 0:00 0 36 2435 1040 0.0 crond
16073 ? S 0:03 4 829 28146 25804 0.7 spamd child
16074 ? S 0:00 14 829 25006 22188 0.6 spamd child
16075 ? S 0:54 120 533 16206 9392 0.2 /usr/local/apache/bin/httpd -DSSL
16076 ? S 0:57 154 533 16306 9500 0.2 /usr/local/apache/bin/httpd -DSSL
16077 ? S 0:54 159 533 16426 9628 0.2 /usr/local/apache/bin/httpd -DSSL
16078 ? S 1:00 143 533 16046 9224 0.2 /usr/local/apache/bin/httpd -DSSL
16079 ? S 0:54 191 533 16330 9508 0.2 /usr/local/apache/bin/httpd -DSSL
16131 ? S 0:00 0 829 6754 4892 0.1 eximstats
16160 ? S 0:55 89 533 16222 9424 0.2 /usr/local/apache/bin/httpd -DSSL
16167 ? S 0:00 1 829 6090 4940 0.1 cpbandwd
16168 ? SN 0:03 19 829 15762 13068 0.3 cpanellogd - sleeping for logs
16185 ? S 0:00 0 829 2950 2300 0.0 entropychat
16189 ? S 0:54 167 533 16114 9288 0.2 /usr/local/apache/bin/httpd -DSSL
16190 ? S 0:51 125 533 15974 9176 0.2 /usr/local/apache/bin/httpd -DSSL
16191 ? S 0:00 1 52 1623 552 0.0 /usr/local/cpanel/bin/startmelange
16208 ? Ss 0:00 1 61 9774 4560 0.1 /usr/bin/stunnel-4.15local /usr/local/cpanel/etc/stunnel/default/stunnel.conf.run
16213 ? S 0:53 110 533 16214 9404 0.2 /usr/local/apache/bin/httpd -DSSL
16214 ? S 0:51 133 533 16170 9356 0.2 /usr/local/apache/bin/httpd -DSSL
16217 ? Ss 0:00 0 828 8367 5604 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/mailmanctl -s start
16224 ? Ss 0:00 0 61 3982 1084 0.0 /usr/sbin/saslauthd -m /var/run/saslauthd -a pam -n 1
16247 ? Ss 0:00 0 27 1452 492 0.0 /usr/sbin/portsentry -tcp
16255 ? S 0:00 0 828 8091 5344 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=ArchRunner:0:1 -s
16256 ? S 0:00 0 828 8115 5520 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=BounceRunner:0:1 -s
16257 ? S 0:00 0 828 8111 5164 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=CommandRunner:0:1 -s
16258 ? S 0:00 0 828 8075 5760 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=IncomingRunner:0:1 -s
16259 ? S 0:00 0 828 8087 5356 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=NewsRunner:0:1 -s
16260 ? S 0:00 0 828 8111 4780 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=OutgoingRunner:0:1 -s
16261 ? S 0:00 0 828 8119 5072 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=VirginRunner:0:1 -s
16262 ? S 0:00 0 828 8119 4672 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=RetryRunner:0:1 -s
22479 ? S 0:00 0 2127 6332 6232 0.1 /etc/authlib/authProg
28484 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
28488 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
5372 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
25825 ? S 0:02 0 3552 8707 10792 0.3 cpsrvd - waiting for connections
7655 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
19601 ? S 0:07 5 533 15518 8700 0.2 /usr/local/apache/bin/httpd -DSSL
30024 ? Ss 0:00 3 106 5765 1812 0.0 pure-ftpd (SERVER)
30027 ? S 0:00 0 8 3559 928 0.0 /usr/sbin/pure-authd -s /var/run/ftpd.sock -r /usr/sbin/pureauth
3949 ? S 0:01 0 3552 9059 11152 0.3 whostmgrd - serving 127.0.0.1
3950 ? S 0:00 0 7839 15344 21744 0.6 /usr/local/cpanel/whostmgr/bin/whostmgr2 ./managepid
3951 ? Z 0:00 0 0 0 0 0.0 [ps] <defunct>
3952 ? S 0:01 2 166 1477 532 0.0 strace -p 16260
9881 ? S 0:00 1 533 15450 8612 0.2 /usr/local/apache/bin/httpd -DSSL
11712 ? S 0:00 1 533 15454 8620 0.2 /usr/local/apache/bin/httpd -DSSL
11749 ? S 0:00 2 533 15490 8656 0.2 /usr/local/apache/bin/httpd -DSSL
14310 ? Ss 0:00 0 296 6603 2184 0.0 sshd: surfingw [priv]
15455 ? S 0:00 0 296 6603 2248 0.0 sshd: surfingw@ttyp0
15457 ttyp0 Ss 0:00 0 573 1578 1276 0.0 -bash
20096 ? S 0:00 0 533 13258 5904 0.1 /usr/local/apache/bin/httpd -DSSL
20103 ? S 0:00 0 533 13258 5904 0.1 /usr/local/apache/bin/httpd -DSSL
20104 ? S 0:00 0 533 13270 5924 0.1 /usr/local/apache/bin/httpd -DSSL
20136 ttyp0 R+ 0:00 0 56 2207 680 0.0 ps axv

View 8 Replies View Related

Handling Incoming Email Messages

Nov 12, 2008

i'm wanting my users to be able to upload pictures to their accounts via email by sending the picture to a central email address (pics@mysite.com, for example).

from there, i'd like to take that incoming email and parse it how i see fit. (matching the email address to the user account, inserting the subject as the photo title, etc...)

what's the best method of handling this?

View 5 Replies View Related

Bailing NPS Any Host Rec For Email Handling

Dec 30, 2008

I've been with NPSIS as a host for 8 years. They started out with 2 guys and their wives doing the billing. Many changes/expansions over the years and all went well till they sold out in 2007. I didn't even realize they sold it until recently when the problems kept increasing and the solutions didn't. It ended today when NPS threatened to turn me in for collections. I in turn will be filing BBB and Attorney General. They lost track of my payment for 2 years thru the school I teach at. I had a grant that paid for a domain name and some hosting for the 2 years for the kids to create their own sites. I called to confirm payment before the grant expired last spring. Now they suddenly say it was never paid. They did slip up and mention that they were in the process of converting to a new billing software package. Good Luck at turning the school in to collections.

Anyway, I am in the market for a new host. I have a couple of other accounts that will follow me. I have been searching for 2 days now and I am finding more bad hosts than good ones. I'm not looking for a McDonalds approach like godaddy or hostgator. I'd prefer something more than a 1 man operation. My typical approach with any new business is to google "NewBusinessName complaint" or "NewBusinessName sucks". This only works for places that have been in business for a year or more though. I am coming up with a lot of hosts on my "NOT" list and the few I find on the good list don't quite have what I want either.

My main concern for my primary account is email/span handling. I like to use horde and squirrelmail, and boxtrapper as part of cpanel. I can deal with something other than boxtrapper if it has white list/ response challenge. I am not sure what the next 8 years will bring as far as needs/changes are concerned but I want a host willing to change with the times. Dealing with spam is a big deal to me.

Any suggestions? Like I say I've been searching for 2 days so far and it seems like finding a needle in a hay stack. I'm still reading lots of info on this site but I am in a hurry to switch hosts.

View 2 Replies View Related

Hosted Bounce Handling Solution

Dec 13, 2007

Now that bbounce had officially closed down, does anyone know of a good hosted, non-boogietools solution for combating bounce emails?

View 0 Replies View Related

Handling Bounce Emails Automatically

Dec 16, 2007

Now that bbounce.com had closed down, does anyone know of a good hosted, non-boogietools solution for combating bounce emails?

View 2 Replies View Related

Monit + Qmail Alerts Doesnt Work

May 9, 2007

I configured monit to send me email alerts when apache is using too many resources but I cannot receive email alerts. I use Qmail.
As for syslog, there is this message:

monit[6473]: Sendmail: error receiving data from the mailserver 'localhost' -- Resource temporarily unavailable

I tried to add for server name the name used in MX record but with the same result.
Btw: other things configured in cron (eg. RKHUNTER) send me alerts OK.

View 0 Replies View Related

No Log Handling Enabled - Turning On Stderr Logging

Feb 22, 2008

We have a box

Cpanel 11
PHP5+ Zend 3.3 +eaccelerator 0.9.5.2+Gzip
CentOS 4

our error_log keeps to have errors

No log handling enabled - turning on stderr logging
Cannot rename /var/net-snmp/snmpapp.conf to /var/net-snmp/snmpapp.0.conf

We have make sure net-snmp is up to date, but still these erros time to time

Client uses drupal system which seems not working well EA, causing a lot of segments fault

The worse is that it seems error happen only when eaccelerator installed

View 1 Replies View Related

QOS Alerts And Sites Running Slow On Occasion

Jul 5, 2008

My sites have been receiving a little more traffic these days (but not too much) and it seems my vps is slowing and at times vbulletin/wordpress page doesn't loads or loads a bit sluggishly (refreshing the page gets rids of not loading issue but not sluggishness).

So I logged into Virtozzo and saw the following QOS alerts:

Jul 05, 2008 11:38:25 AM Green zoneGreen zone kmemsize
Jul 05, 2008 11:38:25 AM Green zoneGreen zone tcpsndbuf
Jul 05, 2008 11:34:54 AM Green zoneGreen zone privvmpages
Jul 05, 2008 11:33:54 AM Yellow zoneYellow zone privvmpages
Jul 05, 2008 11:33:15 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:33:15 AM Black zoneBlack zone tcpsndbuf
Jul 05, 2008 11:28:05 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:28:05 AM Black zoneBlack zone tcpsndbuf
Jul 05, 2008 11:27:55 AM Red zoneRed zone tcpsndbuf
Jul 05, 2008 11:22:55 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:22:54 AM Black zoneBlack zone tcpsndbuf
Jul 05, 2008 11:17:54 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:17:45 AM Black zoneBlack zone tcpsndbuf
Jul 03, 2008 05:31:29 PM Green zoneGreen zone othersockbuf
Jul 03, 2008 05:26:19 PM Black zoneBlack zone othersockbuf

I have previously seen tcpsndbuf going into yellow and even black zone (but only once in a blue moon) however never saw kemsize going into black zone.

These are the limits my host has set:
IDCurrent UseSoft LimitHard LimitUnits
tcpsndbuf301,8602,580,4804,055,040bytes
kmemsize9,135,28929,614,08030,474,240bytes
othersockbuf17,8881,689,1203,145,728bytes

My Cpanel VPS has around 384MB of dedicated ram and around 896Mb of burst Ram. At any given time, there is at least 150Mb of free dedicated RAM. So based on this, are these values correct or they need to be changed or do I need to look for something else which might be causing this problem?

I don't run Spamassassin

View 4 Replies View Related

Black And Yellow Zone Alerts For NUMFILE On My Vps

Jan 31, 2007

can any1 tell me if this is ok for 3 or 4 days i was having Black and yellow zone alerts for NUMFILE on my vps, vps has 256Ram,1024 burst, using centos, virtuozzo and cpanel

somehone can tell me what else to check,

Code:
root@ns1 [~]# cat /proc/user_beancounters
Version: 2.5
uid resource held maxheld barrier limit failcnt
399: kmemsize 8507424 8831248 59228160 60948480 0
lockedpages 0 0 1536 1536 0
privvmpages 90223 93110 262144 270008 0
shmpages 3279 3279 129024 129024 0
dummy 0 0 0 0 0
numproc 86 89 500 500 3736
physpages 47988 50219 0 2147483647 0
vmguarpages 0 0 65536 2147483647 0
oomguarpages 49398 51629 65536 2147483647 0
numtcpsock 47 51 1880 1880 0
numflock 12 13 1128 1236 0
numpty 1 1 64 64 0
numsiginfo 0 1 1536 1536 0
tcpsndbuf 436020 467324 10321920 16220160 0
tcprcvbuf 770048 802816 10321920 16220160 0
othersockbuf 34888 39360 6756480 12582912 0
dgramrcvbuf 0 0 1572864 1572864 0
numothersock 30 34 2160 2160 0
dcachesize 1012491 1047191 13639680 14499840 0
numfile 4370 4487 8192 8192 6491
dummy 0 0 0 0 0
dummy 0 0 0 0 0
dummy 0 0 0 0 0
numiptent 298 298 2000 2000 0
root@ns1 [~]#

Code:
root@ns1 [~]# ps -auxf
Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.3/FAQ
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.0 1620 600 ? Ss 2006 0:22 init [3]
root 26544 0.0 0.0 1524 544 ? Ss 2006 0:18 syslogd -m 0
named 26570 0.0 0.0 46640 2976 ? Ssl 2006 1:14 /usr/sbin/named -u named
root 27659 0.0 0.0 1448 376 ? S 2006 0:00 /usr/sbin/courierlogger -pid=/var/spool/authdaemon
root 27667 0.0 0.0 1796 616 ? S 2006 0:00 \_ /usr/libexec/courier-authlib/authdaemond
root 27697 0.0 0.0 1796 368 ? S 2006 0:00 \_ /usr/libexec/courier-authlib/authdaemond
root 7289 0.0 0.1 9880 8584 ? S Jan21 0:06 | \_ /etc/authlib/authProg
root 27699 0.0 0.0 1796 368 ? S 2006 0:00 \_ /usr/libexec/courier-authlib/authdaemond
root 13800 0.0 0.0 9888 6156 ? S 2006 0:22 | \_ /etc/authlib/authProg
root 27700 0.0 0.0 1796 368 ? S 2006 0:00 \_ /usr/libexec/courier-authlib/authdaemond
root 5506 0.0 0.1 9880 8584 ? S Jan21 0:06 | \_ /etc/authlib/authProg
root 27701 0.0 0.0 1796 368 ? S 2006 0:00 \_ /usr/libexec/courier-authlib/authdaemond
root 7516 0.0 0.1 9880 8588 ? S Jan21 0:07 | \_ /etc/authlib/authProg
root 27702 0.0 0.0 1796 368 ? S 2006 0:00 \_ /usr/libexec/courier-authlib/authdaemond
root 31958 0.0 0.1 9880 8584 ? S Jan21 0:07 \_ /etc/authlib/authProg
root 30718 0.0 0.0 4008 1128 ? Ss 2006 0:02 /usr/sbin/sshd
root 29967 0.0 0.0 6900 2280 ? Ss 15:06 0:00 \_ sshd: root@pts/0
root 30115 0.0 0.0 2944 1280 ? Ss 15:06 0:00 \_ login -- root
root 30124 0.0 0.0 2280 1340 pts/0 Ss 15:06 0:00 \_ -bash
root 5923 0.0 0.0 2300 812 pts/0 R+ 15:20 0:00 \_ ps -auxf
root 31769 0.0 0.0 2072 788 ? Ss 2006 0:00 xinetd -stayalive -pidfile /var/run/xinetd.pid
root 31780 0.0 0.0 2144 1124 ? S 2006 0:00 /bin/sh /usr/bin/mysqld_safe --datadir=/var/lib/my
mysql 31808 0.0 0.3 112316 24712 ? Sl 2006 9:08 \_ /usr/sbin/mysqld --basedir=/ --datadir=/var/li
root 31980 0.0 0.0 9752 8012 ? S 2006 1:05 chkservd
root 31995 0.0 0.0 1452 380 ? S 2006 0:01 /usr/sbin/courierlogger -pid=/var/run/imapd.pid -s
root 31996 0.0 0.0 1560 512 ? S 2006 0:02 \_ /usr/lib/courier-imap/libexec/couriertcpd -add
root 32018 0.0 0.0 1452 300 ? S 2006 0:00 /usr/sbin/courierlogger -pid=/var/run/imapd-ssl.pi
root 32019 0.0 0.0 1560 492 ? S 2006 0:00 \_ /usr/lib/courier-imap/libexec/couriertcpd -add
root 32027 0.0 0.0 1452 380 ? S 2006 0:02 /usr/sbin/courierlogger -pid=/var/run/pop3d.pid -s
root 32029 0.0 0.0 1560 512 ? S 2006 0:02 \_ /usr/lib/courier-imap/libexec/couriertcpd -add
root 32036 0.0 0.0 1452 300 ? S 2006 0:00 /usr/sbin/courierlogger -pid=/var/run/pop3d-ssl.pi
root 32037 0.0 0.0 1560 492 ? S 2006 0:00 \_ /usr/lib/courier-imap/libexec/couriertcpd -add
root 32263 0.0 0.0 2472 928 ? Ss 2006 0:05 crond
root 32288 0.0 0.0 3024 1160 ? S 15:20 0:00 \_ crond
root 32370 0.0 0.0 2096 1036 ? Ss 15:20 0:00 \_ /bin/sh /usr/local/sbin/bfd -q
root 32463 0.1 0.0 2100 1068 ? S 15:20 0:00 \_ /bin/sh /usr/local/sbin/bfd -s
root 5917 0.0 0.0 2100 468 ? R 15:20 0:00 \_ /bin/sh /usr/local/sbin/bfd -s
root 5918 0.0 0.0 2096 976 ? S 15:20 0:00 \_ /bin/sh /usr/local/bfd/tlog /v
root 5922 0.0 0.0 2096 564 ? R 15:20 0:00 | \_ /bin/sh /usr/local/bfd/tlo
root 5919 0.0 0.0 1572 472 ? S 15:20 0:00 \_ grep sshd
root 5920 0.0 0.0 1572 484 ? S 15:20 0:00 \_ grep -viw error: Bind
root 5921 0.0 0.0 1516 468 ? S 15:20 0:00 \_ sed s/::ffff://
root 5924 0.0 0.0 1572 420 ? R 15:20 0:00 \_ grep -vi invalid
root 1434 0.0 0.0 4044 804 ? Ss 2006 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a shado
root 1444 0.0 0.0 4044 464 ? S 2006 0:00 \_ /usr/sbin/saslauthd -m /var/run/saslauthd -a s
root 1508 0.0 0.0 1480 392 ? Ss 2006 0:00 /usr/sbin/portsentry -tcp
root 32126 0.0 0.0 3828 1324 ? Ss 2006 0:00 pure-ftpd (SERVER)
root 32130 0.0 0.0 3568 928 ? S 2006 0:00 /usr/sbin/pure-authd -s /var/run/ftpd.sock -r /usr
root 3137 0.0 0.0 7008 5256 ? S 2006 0:35 cpbandwd
root 3279 0.0 0.1 10812 8312 ? SN 2006 7:40 cpanellogd - sleeping for logs
mailnull 3299 0.0 0.0 7712 5264 ? S 2006 0:34 eximstats
mailnull 32022 0.0 0.0 7348 1984 ? Ss Jan02 0:00 /usr/sbin/exim -bd -oX 26
mailnull 32030 0.0 0.0 7348 1996 ? Ss Jan02 0:20 /usr/sbin/exim -bd -q180m
mailnull 32046 0.0 0.0 7348 1964 ? Ss Jan02 0:00 /usr/sbin/exim -tls-on-connect -bd -oX 465
root 32128 0.0 0.0 3044 1176 ? S Jan02 0:47 antirelayd
root 17635 0.0 0.2 25752 23600 ? Ss Jan02 0:32 /usr/bin/spamd -d --allowed-ips=127.0.0.1 --pidfil
root 22098 0.0 0.3 29440 27060 ? S 04:20 0:02 \_ spamd child
root 9762 0.1 0.3 30216 28136 ? S 11:16 0:19 \_ spamd child
postgres 1351 0.0 0.0 16732 2148 ? S Jan21 0:00 /usr/bin/postmaster -p 5432 -D /var/lib/pgsql/data
postgres 1354 0.0 0.0 7532 880 ? S Jan21 0:00 \_ postgres: stats buffer process
postgres 1355 0.0 0.0 6540 1024 ? S Jan21 0:00 | \_ postgres: stats collector process
postgres 29997 0.0 0.1 17544 11528 ? S 09:56 0:02 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 30561 0.0 0.1 18104 11852 ? S 09:56 0:02 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 31864 0.0 0.1 17592 11532 ? S 09:57 0:02 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 32183 0.0 0.1 17496 11288 ? S 09:57 0:01 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 32285 0.0 0.1 17580 11536 ? S 09:57 0:01 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 32299 0.0 0.1 18016 11708 ? S 09:57 0:03 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 3076 0.0 0.1 18080 11732 ? S 09:58 0:02 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 5427 0.0 0.1 17488 11280 ? S 09:59 0:02 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 26225 0.0 0.1 17544 11280 ? S 10:12 0:01 \_ postgres: wifidog wifidog 127.0.0.1 idle
postgres 27895 0.0 0.1 17544 11292 ? S 10:20 0:01 \_ postgres: wifidog wifidog 127.0.0.1 idle
root 28058 0.0 0.1 17508 9088 ? S Jan30 0:02 cpsrvd - waiting for connections
root 29793 0.0 0.1 19096 9928 ? Ss 09:56 0:00 /usr/local/apache/bin/httpd -DSSL
nobody 29829 0.0 0.1 19408 9556 ? S 09:56 0:03 \_ /usr/local/apache/bin/httpd -DSSL
nobody 29830 0.0 0.1 19444 9560 ? S 09:56 0:02 \_ /usr/local/apache/bin/httpd -DSSL
nobody 29831 0.0 0.1 19448 9820 ? S 09:56 0:04 \_ /usr/local/apache/bin/httpd -DSSL
nobody 29832 0.0 0.1 20576 9708 ? S 09:56 0:04 \_ /usr/local/apache/bin/httpd -DSSL
nobody 29833 0.0 0.1 20572 9936 ? S 09:56 0:05 \_ /usr/local/apache/bin/httpd -DSSL
nobody 30225 0.0 0.1 19332 9472 ? S 09:56 0:03 \_ /usr/local/apache/bin/httpd -DSSL
nobody 31771 0.0 0.1 19452 9532 ? S 09:57 0:03 \_ /usr/local/apache/bin/httpd -DSSL
nobody 31872 0.0 0.1 20584 9724 ? S 09:57 0:03 \_ /usr/local/apache/bin/httpd -DSSL
nobody 22289 0.0 0.1 19456 9588 ? S 10:10 0:03 \_ /usr/local/apache/bin/httpd -DSSL
nobody 22324 0.0 0.1 19328 9464 ? S 10:10 0:03 \_ /usr/local/apache/bin/httpd -DSSL
root@ns1 [~]#

View 3 Replies View Related

Hosting Company With Odd Database Handling Procedure

Nov 14, 2007

I created a SQL Server database that need sto be setup for the customer on their hosting account. The hosting company wanted the sql statemens, ok so I gave it to them to setup my tables and stored procedures. I also mentioned that if they gave me a username and password with database location and catalog name for the connection string and as long as I had create rights for that database I could run my own sql statements via SQL Server Enterprise Manager to set it up. They sent an excuse about how insecure that wasy and that they couldn't send any usernames or passwords for the database to me t set this up.

They also said it's becomming more common for Hosting Companies to not allow access to the databases for thatpurpose. Ok... uh how in the world do they expect to have a programmer create and run their data driven website without that information? I'm confused on what these guys are doing.

So.. is this true? Are more hosting companies hording their database infromation and customer usernames and passwords from the developers?

View 3 Replies View Related

Apache :: Mod Proxy - Error Page Handling

Nov 10, 2014

a question on mod_proxy. We're using mod_proxy as a simple reverse proxy (ProxyPass & ProxyPassReverse) to reverse-proxy various back-end PHP and Mono/.NET apps.

One problem we see is that when the back-end PHP app suffers an error (e.g. a 404 or 500) , then mod_proxy ignores the nicely-formatted custom error page served up by our PHP app, and instead serves a very plain generic mod_proxy 404 or 500 error page back to the client. Is there a way to configure mod_proxy to serve up the 500/404 error page content which is created by the back-end app ?

(We thought ProxyErrorOverride might work, but it seems to be intended for the opposite scenario, where I want to *ignore* the 404 page content from the back-end and show a mod_proxy-defined error page instead.We're using apache 2.2 on 64-bit CentOS 6.5 ( httpd-2.2.15-31.el6.centos.x86_64 )

Config like:
...
ProxyPass /abc/ http://server4/abc/
ProxyPassReverse /abc/ http://server4/abc/

View 1 Replies View Related

Server Monitoring - Siteuptime Starting To Give False Alerts

Jun 26, 2008

Being using the free version of siteuptime.com but this month alone i have had so far 3 false alerts reported, i am always in the putty and does not get interrupted, and i am sure i am around on the site too while supposedly siteuptime reports down (i am guessing firewall blocks their server ip for w/e reason). So am wondering is there any really good public tracking site out there which can do public reports more accurately and not kak out on me?

Whats your experience with siteuptime for monitoring if any ? Sometimes it works "ok" other times its just off the charts.

View 9 Replies View Related

Plesk 12.x / Linux :: Server Health Emailed Alerts / Alarms

Apr 22, 2015

I keep receiving emailed alerts with subject like:
"<server name> alarm level changed"

with content like:

Server health parameter "Memory > Real memory usage" changed its status from "green" to "yellow".
or
Server health parameter "Services > Apache CPU usage" changed its status from "red" to "yellow".

(and then a readout of the top command)

1) Where in Plesk can I see live alerts (or a historical log of these alerts)

2) Where can I change the settings (I think it may be too sensitive and the thresholds need to be adjusted)

3) I don't quite understand the alerts in general either, for example, the "Memory > Real memory usage", the TOP command output is for example:

top - 12:19:59 up 4:56, 1 user, load average: 0.21, 0.21, 0.21
Tasks: 255 total, 1 running, 254 sleeping, 0 stopped, 0 zombie
Cpu(s): 5.5%us, 0.7%sy, 0.2%ni, 92.8%id, 0.8%wa, 0.0%hi, 0.1%si, 0.0%st
Mem: 5967176k total, 2539756k used, 3427420k free, 134972k buffers
Swap: 4194300k total, 788k used, 4193512k free, 664916k cached

More than half the memory is unused, very little swap is in use. I don't even see a reason to be warning about this.

View 4 Replies View Related

3dghosting -->> Terrible Customer Relations And Terrible Money Handling

May 22, 2008

On apr 10th, I ordered 1 month of 3dg's $20 vps plan..

I asked about paying through paypal, and they said that they would setup the account, and charge me 'later'

on somewhere around may 5th~7th, I turned off auto-renew through their control panel..

since then, I forgot about the vps, and went ahead with my life, etc.

but today.. I get in my email a $40 PayPal invoice, charging me for apr11~june11 ...

I turned off auto renew before may10, which was the expire date for the plan.. but it now appears it has not been canceled.

I have never used their service after may 10... and I never enabled auto renew, but set it to disabled ...

now, they are charging me $40, which is complete.. BS.
they have renewed my account against my will, and they want me to pay for it.. and they are threatening me to take 'legal action'. should I decide not to pay $40...

don't trust 3dghosting.. they will renew your account w/o your consent, and charge you. if you don't give into their demands, they will contact debt collection agency, and contact credit bureaus..

don't trust 3dghosting.. they are ignorant people. I can pretty much imagine the big "WE CHARGE CUSTOMERS AT OUR WILL, AND WE MAKE THEM PAY NO MATTER WHAT" image as their background display for their computers...

View 3 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved