Is there a way to prevent a certain service from taking up a certain amount of load on the server?
Like, shouldn't there be a way I can tell gzip or exim how much server load they are allowed to take up on my server?
I know it may run them slower, but it will be for the better if I could set each one to only be able to have a max load peak or something.
I have a centos 4.4 server, I noticed the load is high and when I checked the top command I found the following:
Code:
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
17212 root 25 0 11504 6236 908 R 57 0.3 195:58.73 http
27994 ftp 18 0 7624 2232 336 R 48 0.1 0:02.39 proftpd
7056 nobody 15 0 27764 10m 1884 S 8 0.5 0:00.62 httpd
4738 nobody 15 0 25788 8952 1976 S 7 0.4 0:08.01 httpd
7199 root 18 0 6376 3704 760 R 6 0.2 0:02.41 top
7021 nobody 16 0 27240 10m 1964 S 5 0.5 0:01.73 httpd
3999 nobody 16 0 26888 9.9m 2008 S 5 0.5 0:09.39 httpd
7180 nobody 15 0 26524 9524 1700 S 5 0.5 0:00.16 httpd
6330 nobody 15 0 26856 9.8m 1992 S 4 0.5 0:04.34 httpd
6272 nobody 15 0 26764 9912 1968 S 2 0.5 0:05.36 httpd
6239 nobody 15 0 25428 8476 1888 S 1 0.4 0:02.95 httpd
1 root 16 0 2300 96 68 S 0 0.0 4:46.28 init
20323 ftp 16 0 5116 428 312 S 0 0.0 0:00.92 proftpd
22126 ftp 16 0 5512 428 312 S 0 0.0 0:01.03 proftpd
22313 ftp 16 0 5644 424 312 S 0 0.0 0:01.00 proftpd
22781 ftp 16 0 5644 460 304 S 0 0.0 0:01.04 proftpd
22837 ftp 16 0 5644 424 312 S 0 0.0 0:01.02 proftpd
24157 ftp 16 0 5776 432 308 S 0 0.0 0:01.09 proftpd
24176 ftp 16 0 5776 432 308 S 0 0.0 0:01.09 proftpd
24989 ftp 16 0 6040 476 316 S 0 0.0 0:00.91 proftpd
25327 ftp 16 0 6172 548 308 R 0 0.0 0:01.02 proftpd
25526 ftp 16 0 6172 808 308 R 0 0.0 0:01.03 proftpd
26013 ftp 16 0 6172 1128 308 R 0 0.1 0:00.98 proftpd
26152 ftp 16 0 6172 1144 312 R 0 0.1 0:01.00 proftpd
26306 ftp 16 0 6172 1172 308 R 0 0.1 0:01.02 proftpd
26455 ftp 16 0 6172 1420 312 S 0 0.1 0:04.02 proftpd
26860 ftp 16 0 6172 928 308 S 0 0.0 0:01.04 proftpd
26936 ftp 16 0 6172 928 308 S 0 0.0 0:00.91 proftpd
27166 ftp 16 0 6172 800 308 S 0 0.0 0:00.96 proftpd
27329 ftp 16 0 6172 716 308 S 0 0.0 0:01.01 proftpd
15659 ftp 16 0 6172 592 308 S 0 0.0 0:00.99 proftpd
4944 ftp 16 0 6172 544 336 S 0 0.0 0:00.98 proftpd
5163 ftp 16 0 6304 544 336 S 0 0.0 0:00.99 proftpd
18964 ftp 16 0 6304 608 308 S 0 0.0 0:00.96 proftpd
19151 ftp 16 0 6304 620 328 S 0 0.0 0:00.99 proftpd
4986 ftp 16 0 6304 596 308 S 0 0.0 0:00.87 proftpd
30721 ftp 16 0 6436 612 312 S 0 0.0 0:00.94 proftpd
13808 ftp 16 0 6436 644 316 S 0 0.0 0:01.01 proftpd
13905 ftp 16 0 6436 640 316 S 0 0.0 0:00.97 proftpd
also when I checked the `ps aux` command I found a lot in this form:
Code:
ftp 22006 0.0 0.0 5512 424 ? S 01:24 0:01 proftpd: (accepting connections)
In learning that some hosts seem to be tightening shared hosting specs, I'm wondering what a 'simultaneous process' is... as from this clip: 'number of simultaneous processes should not exceed 5'.
Is each part - for example, graphics and includes - of an individual webpage a 'process'?
I have a server that has server load showing at 25-40 (once it was even 53!), running like that for hours. The server has 4 cpus - and yet the sites on the server seem to run fine when I check them. What I'm wondering is, what exactly is load in this context; and how can load run so high like that without the server crashing?
According to top, the load is caused by httpd processes running under user 'nobody', that often take up double digit CPU percentage.
Does Apache always run under 'nobody'?
Is there any way to trace an httpd processes - which account it's for, or which physical script or URL is calling it?
And for top itself, the TIME field on one server of mine is in the format xx:xx (e.g. 3:25), on another it's TIME+ and in the format xx:xx.xx (e.g. 30:02.77). What exactly does this mean? I would asume it's minutes:seconds and minutes:seconds:hundredths, but while watching top it doesn't seem to correlate with that.
I have 2 almost similar webservers:
debian 3.2, P4 3GHZ, 1 Gb ram, kernel 2.6, apache2, php4
Initial apache2.conf:
Code:
Timeout 4
KeepAlive Off
KeepAliveTimeout 2
ServerLimit 1500
<IfModule prefork.c>
StartServers 10
MinSpareServers 10
MaxSpareServers 15
MaxClients 1500
MaxRequestsPerChild 3000
</IfModule>
I update the sources.list on server 1 to mirrors of the new debian 4 etc . I run apt-get update and apt-get dist-upgrade . A whole bunch of things get updated (it was long time ago that I did this anyway). After some troubles with /boot/grub/menu.lst the server boots ok, and everything is well. This server used to have loads of 15-25 at peak times, but after the update its running very smooth with loads of 2-3 at the same peak times. I dont know why exactly, as I noticed updates in OS , kernel version (from 2.6.8x to 2.6.18) , apache2 , php (4.4.4-8+etch1) , and I also needed to update eaccelerator from 0.94 to 0.95 .
A few days later I update server 2. Everything seems to go the same, although the kernel version stays at 2.6.8-3-686. I dont think kernel version at start was exactly same at server 1. But the new php version is the same as server 1, and everything else looks the same too.
But when peak times are coming up, this server starts to have troubles. It is quickly rising to total of 200-300 processes , while server 1 always stays stable at 60-70.
Server 2 also reacts slow if I click somewhere on the site. It takes 5-10 seconds to show a new page. However the load stays pretty low at 1-2 . I see no big cpu usage and also no big memory usage. I have the impression that this server 2 is somehow wasting a lot of apache processes and is making things hard for itself without a real reason.
When I check the seperate mysql database server, I also notice a lot of processes.
Around 200-250 whereas it used to be 40-60. Sometimes this adds up so hard, that all webservers are blocked because mysql has too much processes. When I check the mysql connections, I see a few dozen things like 'unauthen ip:port Connect login' just hanging. All of them have the ip of webserver 2. Those extra apache processes are somehow hanging on to the mysql server without really doing something.
I dont know what is happening, but this server is underperforming very badly now. I managed to limit the problem by drastically lowering ServerLimit and MaxClients on webserver 2 , but this is no real solution. The server is still slow, at least now its not bringing down the others.
My question : what should I check for now ? I noticed a different structure in the conf files in debian etch, maybe something new has a bad influence on my old conf files? Is there something wrong with the combination of kernel+php version? I have no idea, please point me in the right direction so I can learn from this.
a topic long time ago that my server load is frequently high.
I'm talking about something like this
Server Load 158.86
Memory Used 28.2 %
Swap Used 99.57 %
[url]
The only way to solve this problem is to identify the load earlier and kill all httpd process. What I did was
#killall -9 httpd
#killall -9 httpd
#killall -9 httpd
x 30~40 times until no pid process found & the server load is back to normal.
On previous thread, I tried to update mysql & php and it works,
Right now again I am experiencing high server load again...
I'm very sure it's caused by httpd but I am still unable to find out the real cause of the problem and which account user is the culprit for causing this high load.
Can someone assist me by telling me where/how to begin with?
I am thinking about making a little php file that will print a flash game with a link to my site below the actual game. Other webmasters can use this php file on their site to embed this game.
I'm on shared hosting with Bluehost at the moment. What will be the implications on bandwidth and CPU if these php files which serve the games become popular (get hit quite frequently per day/hour/second)?
I'm just wondering what a few good techniques to prevent DDoS would be. What causes them? How can I protect my server against them? I noticed that Apache has something called mod_evasive which helps against them. Does lighttpd have something like this?
View 9 Replies View RelatedThe images I am trying to block are on page generated by a simple PHP script on my server. The offender has replicated what I am doing with ASP on their server. They are hotlinking to my images for the resulting page. They left my website's name on them, so they must think that giving credit is enough.
I'm going to be contacting them to stop but I also want to see if there is a way for me to prevent it from happening in the first place.
I tried mod_rewrite...
Code:
RewriteEngine on
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^[url].*$ [NC]
RewriteRule .(gif|jpg)$ - [F]
I know mod_rewrite works on my server because I've been using it for some other things.
However, whenever I enable the above code (add it to the directives and restart apache - have also tried just putting it in a .htaccess file in the appropriate directory), I end up with images still being allowed on my domain and the other domain I'm trying to stop from using my images. Do you think it could have to do with an absent referrer? I read that the code doesn't work if the referrer is blank. What else would cause this not to work? Obviously the domain would have to be correct, but it doesn't block from my domain OR the offending domain.
I tried another method:
Code:
<FilesMatch ".(gif¦jpg¦png)$">
SetEnvIfNoCase Referer ^$ allow_image
SetEnvIfNoCase Referer ^[url] allow_image
Order Deny,Allow
Deny from all
Allow from env=allow_image
</FilesMatch>
This one blocked images to the offending domain, but it also blocked mine!
I am currently using IPB as my forum software. I've enabled admin validation only for registrations, to combat the increasing amount of spam signups. I see a lot of .ru and .cn email signups, or other suspicious signups, which I always delete.
What is the best way to combat these spammers?
I've been considering something like WHT uses, that you need X posts before being able to post links, how can I accomplish this with IPB?
I am running a hosting service. Recently a user put a phishing site on the server, pretending to be an eBay signup page and soliciting passwords. I had all kind of truble with this, because eBay complained to my server company.
I would like to ask if you know any solution what would block such sites automatically?
It could search for some predefined texts on the page (such as "sign in to eBay") and block the page if they are found. I wasn't able to find anything in Apache documentation.
I can't get SELinux to let httpd load the IonCube module for PHP. I've given the CentOS 5 forum a try (here: http://www.centos.org/modules/newbb/...15403&forum=42), talked with WHMCS's support (the app I'm using that needs it), and even opened a ticket with IonCube. Unfortunately nobody seems to know how to tell SELinux to let httpd "exec" modules.
I'm running CentOS 5, and the error I'm getting in /var/log/messages is:
Jul 23 10:15:30 host kernel: audit(1216833330.905:1249): avc: denied { execheap } for pid=22055 comm="httpd" scontext=root:system_r:httpd_t:s0 tcontext=root:system_r:httpd_t:s0 tclass=process
I can disable SELinux and it works fine (setenforce 0), but that's not the solution I'm looking for. Can someone please tell me how to do this the *right* way?
PRODUCT, VERSION, MICROUPDATE, OPERATING SYSTEM, ARCHITECTURE
Plesk Panel 11.5.30#46
Centos 6.5
AuthenticAMD, AMD Opteron(TM) Processor 6272
PROBLEM DESCRIPTION
Upon a shutdown or reboot, the system shuts down sw-collectd. Further along, it will end wdcollect and the following will occur:
init: psa-wdcollect main process (pid) killed by KILL signal
init: psa-wdcollect main process ended, respawning
wdcollect[pid]: Language en-US is used for sending e-mail messages.
wdcollect[pid]: Failed to connect to database server during the startup. New attempts will be made if needed.
wdcollect[pid]: Server started
I believe this is preventing the un-mounting of drives which in the end freezes the shutdown process on:
Please stand by while rebooting the system...
After this occurs, I have to force the VM off and then boot again.
I have tried the following:[URL] .....
I am currently installing lxadmin in my webserver, but during the intallation i received a alert message from my "settroubleshootebrowser" saying:
SummarySELinux is preventing /usr/local/lxlabs/ext/php/php from loading /usr/local/lxlabs/ext/php/lib/mysql.so which requires text relocation.
Allowing AccessIf you trust:
/usr/local/lxlabs/ext/php/lib/mysql.so to run correctly, you can change the file context to textrel_shlib_t. "chcon -t textrel_shlib_t /usr/local/lxlabs/ext/php/lib/mysql.so"The following command will allow this access:chcon -t textrel_shlib_t /usr/local/lxlabs/ext/php/lib/mysql.so
This message was for thwe SQL and Zend optimizer.
My Question is, where do i find the "chcon -t textrel_shlib_t" file allow access?
On my server, users can connect to any database as long as they have the database user and password. This makes it easier to hack any database on the server.
What I want to do is to make the users can only connect to their own databases and not other's.
I tried changing the localhost ip address but it didn't work ( I assume I didn't do it the right way)
just got some sites hacked for a second time by this V4 team.
Quote:
Hack3d
Your System 0wned By V4 TeAm
V.4 Crackers
Contact :
Dj_moad@hotmail.fr
Attack Method : uid=0(root) gid=0(root) groups=0(Root)
Attack Reason : Revenge against that websites
GrEetz To All V4 TeAm Members
==>>V4 TeaM<<==
links to [url]
i've run every security setting i can picture, including CSF, firewalls, restricting php access, suexec and what not.
how these a**holes keep coming in? using WHM11.
ps x
Quote:
7992 ? S 0:08 [cifsd]
26898 ? S 0:00 [cifsoplockd]
26899 ? S 0:00 [cifsdnotifyd]
What are those processes?
anybody here have a review or a way to trace proccess from scratch after top -c or ps -aux
how i got the exact file or user cause this process ....
I just recently switched to using fcgid with cPanel and was wondering how I can go about seeing what is actually running under each process. Before when I was running PHP as CGI I could do psauxwe|grep PID and see all the environmental variables along with the path. I'm not able to do that any longer with fcgid. Is there anyway to get this info now?
View 2 Replies View Related
rpc 1749 1 0 04:15 ? 00:00:00 rpcbind
dbus 1766 1 0 04:15 ? 00:00:00 dbus-daemon --system
root 1790 1 0 04:15 ? 00:00:00 /usr/sbin/acpid
68 1798 1 0 04:15 ? 00:00:00 hald
root 1801 1 0 04:15 ? 00:00:00 /usr/sbin/console-kit-daemon
root 1802 1798 0 04:15 ? 00:00:00 hald-runner
root 1898 1802 0 04:15 ? 00:00:00 hald-addon-input: Listening on /dev/input/event1 /dev/input/event0
68 1939 1802 0 04:15 ? 00:00:00 hald-addon-acpi: listening on acpid socket /var/run/acpid.socket
just wondering if i really need them...
Well one of my servers has been under a DDoS attack for a while and I've been doing things to keep it down but there is a suspicious process that keeps running and I am guessing that is whats keeping the server load up because when I stop apache the load goes down but not for long.
The process is this:
Code:
/opt/adobe/fms/fmscore -adaptor _defaultRoot_ -vhost _defaultVHost_ -app registry -inst registry -tag -conf /opt/adobe/fms/conf/Server.xml -name _defaultRoot_:_defaultVHost_:registry:registry:
Does anyone know what this process is or how to block it?
I've found I've got tons of processes "sleeping" on my server, how do I view what processes are sleeping? Is there a command I can run that lists all sleeping (only) processes?
View 4 Replies View RelatedGot some processes that regularly eat up my cpu resources:
%CPU 36.0netstat -plan
%CPU 36.0 /usr/local/apache/bin/httpd -k start -DSSL
%CPU 6.2httpd [truncurl.com] [/leisha?.jpg]
Note leisha.jpg does not even exist!!
%CPU 7.0 /usr/local/bin/python2.4 -S /usr/local/cpanel/3rdparty/mailman/cron/disabled
Something is going seriously wrong with my server,
what can I do ?
My server is frequently down because of kmemsize errors and I'm sure something is misconfigured.
Will try to disable mailman now, pretty strange to find that in my log.
urrent Time: Tuesday, 12-Feb-2008 04:38:22 PST
Restart Time: Tuesday, 12-Feb-2008 04:11:28 PST
Parent Server Generation: 0
Server uptime: 26 minutes 53 seconds
Total accesses: 16026 - Total Traffic: 14.8 MB
CPU Usage: u1.97 s1.55 cu0 cs0 - .218% CPU load
9.94 requests/sec - 9.4 kB/second - 971 B/request
46 requests currently being processed, 20 idle workers ....
How do I get a list of just the sleeping processes on a Red Hat server?
View 4 Replies View RelatedKernel Version(uname -r):
2.6.9-42.ELsmp
Hardware Information:
Intel C2D E6400
2GB DDRAM Memory
120GB EIDE Hard Drive
Software Version(if it is a specific peice of software causing problems)
IPB Forum Software
Control Panel(if any)
Plesk
A "ps -auxf" and/or a "top"(if possible)
Code:
[root@server ~]# ps -auxf
Warning: bad syntax, perhaps a bogus '-'? See /usr/share/doc/procps-3.2.3/FAQ
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.0 1892 384 ? S 19:42 0:00 init [3]
root 2 0.0 0.0 0 0 ? S 19:42 0:00 [migration/0]
root 3 0.0 0.0 0 0 ? SN 19:42 0:00 [ksoftirqd/0]
root 4 0.0 0.0 0 0 ? S 19:42 0:00 [migration/1]
root 5 0.0 0.0 0 0 ? SN 19:42 0:00 [ksoftirqd/1]
root 6 0.0 0.0 0 0 ? S< 19:42 0:00 [events/0]
root 8 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [khelper]
root 9 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [kacpid]
root 31 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [kblockd/0]
root 32 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [kblockd/1]
root 53 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [aio/0]
root 54 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [aio/1]
root 1858 0.0 0.0 0 0 ? S< 19:43 0:00 \_ [kauditd]
root 5022 0.0 0.0 0 0 ? S 19:52 0:00 \_ [pdflush]
root 7 0.0 0.0 0 0 ? S< 19:42 0:00 [events/1]
root 311 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [ata/0]
root 312 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [ata/1]
root 334 0.0 0.0 0 0 ? S< 19:42 0:00 \_ [kmirrord]
root 5021 0.0 0.0 0 0 ? S 19:52 0:00 \_ [pdflush]
root 33 0.0 0.0 0 0 ? S 19:42 0:00 [khubd]
root 52 0.6 0.0 0 0 ? S 19:42 0:54 [kswapd0]
root 200 0.0 0.0 0 0 ? S 19:42 0:00 [kseriod]
root 316 0.0 0.0 0 0 ? S 19:42 0:00 [scsi_eh_0]
root 317 0.0 0.0 0 0 ? S 19:42 0:00 [scsi_eh_1]
root 346 0.0 0.0 0 0 ? S 19:42 0:01 [kjournald]
root 1427 0.0 0.0 2576 296 ? S<s 19:43 0:00 udevd
root 1931 0.0 0.0 0 0 ? S 19:43 0:00 [kjournald]
root 2525 0.0 0.0 3400 256 ? Ss 19:43 0:00 cpuspeed -d -n
root 2526 0.0 0.0 3400 252 ? S 19:43 0:00 \_ cpuspeed -d -n
root 2875 0.0 0.0 1644 460 ? Ss 19:43 0:00 syslogd -m 0
root 2879 0.0 0.0 2544 340 ? Ss 19:43 0:00 klogd -x
root 2889 0.0 0.0 3252 284 ? Ss 19:43 0:00 irqbalance
rpc 2907 0.0 0.0 2136 336 ? Ss 19:43 0:00 portmap
root 2926 0.0 0.0 2784 440 ? Ss 19:43 0:00 rpc.statd
root 2954 0.0 0.0 5252 160 ? Ss 19:43 0:00 rpc.idmapd
root 3021 0.0 0.0 2472 424 ? S 19:43 0:00 /usr/sbin/smartd
root 3030 0.0 0.0 3048 312 ? Ss 19:43 0:00 /usr/sbin/acpid
root 3039 0.0 0.0 8816 852 ? Ss 19:43 0:00 cupsd
root 3114 0.0 0.0 4932 480 tty8 Ss+ 19:43 0:00 /bin/bash
root 3252 0.0 0.0 5500 948 ? Ss 19:43 0:00 /usr/sbin/sshd
root 4926 0.0 0.1 9852 2456 ? Ss 19:47 0:02 \_ sshd: root@pts/0,pts/1
root 4930 0.0 0.0 4452 1400 pts/0 Ss 19:48 0:00 \_ -bash
root 5029 0.1 0.0 2812 984 pts/0 S+ 19:54 0:13 | \_ top -c
root 4968 0.0 0.0 5276 1408 pts/1 Ss 19:49 0:00 \_ -bash
root 13543 0.0 0.0 3868 820 pts/1 R+ 21:57 0:00 | \_ ps -auxf
root 5656 0.0 0.0 4520 1244 ? Ss 20:18 0:00 \_ /usr/libexec/openssh/sftp-server
root 3265 0.0 0.0 3476 656 ? Ss 19:43 0:00 xinetd -stayalive -pidfile /var/run/xinetd.pid
root 3291 0.0 0.0 5296 580 ? S 19:43 0:00 /usr/lib/courier-imap/couriertcpd -address=0 -stderrlogger=/usr/sbin/courierlogger -stderrloggername=imapd -maxproc
root 3293 0.0 0.0 4884 464 ? S 19:43 0:00 /usr/sbin/courierlogger imapd
root 3303 0.0 0.0 3956 512 ? S 19:43 0:00 /usr/lib/courier-imap/couriertcpd -address=0 -stderrlogger=/usr/sbin/courierlogger -stderrloggername=imapd-ssl -max
root 3305 0.0 0.0 4168 208 ? S 19:43 0:00 /usr/sbin/courierlogger imapd-ssl
root 3313 0.0 0.0 5300 512 ? S 19:43 0:00 /usr/lib/courier-imap/couriertcpd -address=0 -stderrlogger=/usr/sbin/courierlogger -stderrloggername=pop3d -maxproc
root 3315 0.0 0.0 5180 208 ? S 19:43 0:00 /usr/sbin/courierlogger pop3d
root 3324 0.0 0.0 3524 512 ? S 19:43 0:00 /usr/lib/courier-imap/couriertcpd -address=0 -stderrlogger=/usr/sbin/courierlogger -stderrloggername=pop3d-ssl -max
root 3326 0.0 0.0 5260 208 ? S 19:43 0:00 /usr/sbin/courierlogger pop3d-ssl
root 3336 0.0 0.0 2604 220 ? Ss 19:43 0:00 gpm -m /dev/input/mice -t exps2
named 3365 0.0 0.0 47804 1552 ? Ssl 19:43 0:00 /usr/sbin/named -u named -c /etc/named.conf -u named -t /var/named/run-root
root 3431 0.0 0.0 5492 476 ? S 19:43 0:00 /bin/sh /usr/bin/mysqld_safe --defaults-file=/etc/my.cnf --pid-file=/var/run/mysqld/mysqld.pid
mysql 3461 2.3 1.7 180312 36012 ? Sl 19:43 3:06 \_ /usr/libexec/mysqld --defaults-file=/etc/my.cnf --basedir=/usr --datadir=/var/lib/mysql --user=mysql --pid-file
qmails 3485 0.0 0.0 2816 408 ? S 19:43 0:00 qmail-send
qmaill 3487 0.0 0.0 3364 392 ? S 19:43 0:00 \_ splogger qmail
root 3488 0.0 0.0 3432 192 ? S 19:43 0:00 \_ qmail-lspawn ./Maildir/
qmailr 3489 0.0 0.0 2340 320 ? S 19:43 0:00 \_ qmail-rspawn
qmailq 3490 0.0 0.0 2960 264 ? S 19:43 0:00 \_ qmail-clean
postgres 3533 0.0 0.0 19968 964 ? S 19:44 0:00 /usr/bin/postmaster -p 5432 -D /var/lib/pgsql/data
popuser 3549 0.0 0.0 28160 1112 ? Ss 19:44 0:00 /usr/bin/spamd --username=popuser --daemonize --nouser-config --helper-home-dir=/var/qmail --max-children 5 --creat
popuser 3550 0.0 0.0 28160 360 ? S 19:44 0:00 \_ spamd child
popuser 3551 0.0 0.0 28160 360 ? S 19:44 0:00 \_ spamd child
popuser 3552 0.0 0.0 28160 360 ? S 19:44 0:00 \_ spamd child
popuser 3553 0.0 0.0 28160 360 ? S 19:44 0:00 \_ spamd child
popuser 3554 0.0 0.0 28160 360 ? S 19:44 0:00 \_ spamd child
root 3638 0.0 0.0 36808 836 ? Ss 19:44 0:00 /usr/local/psa/admin/bin/httpsd
psaadm 3643 0.0 1.3 48492 27292 ? S 19:44 0:01 \_ /usr/local/psa/admin/bin/httpsd
psaadm 4927 0.0 0.6 42516 13556 ? S 19:48 0:00 \_ /usr/local/psa/admin/bin/httpsd
root 3899 0.0 0.0 5292 512 ? Ss 19:44 0:00 crond
root 3917 0.0 0.0 2800 328 ? Ss 19:44 0:00 /usr/sbin/atd
dbus 3931 0.0 0.0 3272 312 ? Ss 19:44 0:00 dbus-daemon-1 --system
root 3953 0.0 0.0 8380 1368 ? Ss 19:44 0:00 hald
root 4022 0.0 0.0 2284 292 tty1 Ss+ 19:44 0:00 /sbin/mingetty tty1
root 4023 0.0 0.0 3188 292 tty2 Ss+ 19:44 0:00 /sbin/mingetty tty2
root 4024 0.0 0.0 1724 292 tty3 Ss+ 19:44 0:00 /sbin/mingetty tty3
root 4025 0.0 0.0 3012 292 tty4 Ss+ 19:44 0:00 /sbin/mingetty tty4
root 4026 0.0 0.0 1924 292 tty5 Ss+ 19:44 0:00 /sbin/mingetty tty5
root 4027 0.0 0.0 3276 292 tty6 Ss+ 19:44 0:00 /sbin/mingetty tty6
root 5067 0.0 0.6 30840 13108 ? Ss 20:10 0:00 httpd -k start
apache 5068 0.0 0.2 21704 4800 ? S 20:10 0:00 \_ httpd -k start
apache 9257 1.9 1.2 46684 25732 ? S 21:06 1:01 \_ httpd -k start
apache 9675 1.9 1.2 46492 25892 ? S 21:11 0:54 \_ httpd -k start
apache 10137 1.5 1.2 46532 25944 ? S 21:16 0:38 \_ httpd -k start
apache 10556 2.0 1.2 46332 25732 ? S 21:21 0:44 \_ httpd -k start
apache 10627 1.5 1.2 46932 25980 ? S 21:21 0:33 \_ httpd -k start
apache 10633 1.8 1.2 46640 26052 ? S 21:21 0:39 \_ httpd -k start
apache 10727 2.0 1.2 46312 25360 ? S 21:22 0:43 \_ httpd -k start
apache 10734 2.1 1.2 47100 26144 ? S 21:22 0:44 \_ httpd -k start
apache 11350 1.9 1.2 46048 25444 ? S 21:29 0:32 \_ httpd -k start
apache 11352 1.7 1.1 45764 24804 ? S 21:29 0:28 \_ httpd -k start
apache 11625 1.8 1.2 46344 25380 ? S 21:32 0:27 \_ httpd -k start
apache 12100 1.2 1.1 45220 24244 ? S 21:37 0:15 \_ httpd -k start
apache 12273 1.5 1.2 46028 25428 ? S 21:39 0:16 \_ httpd -k start
apache 12511 1.6 1.2 46444 25468 ? S 21:42 0:15 \_ httpd -k start
apache 12816 2.1 1.1 45372 24680 ? S 21:46 0:13 \_ httpd -k start
apache 12896 1.7 1.1 44264 23292 ? S 21:48 0:09 \_ httpd -k start
apache 13096 1.6 1.2 46684 25704 ? S 21:51 0:06 \_ httpd -k start
apache 13102 1.7 1.1 44272 23300 ? S 21:51 0:06 \_ httpd -k start
apache 13320 1.2 1.0 42392 21408 ? S 21:54 0:02 \_ httpd -k start
apache 13344 0.9 1.0 41808 20812 ? S 21:54 0:01 \_ httpd -k start
vmstat 5 5(if possible):
Code:
[root@server ~]# vmstat 5 5
procs -----------memory---------- ---swap-- -----io---- --system-- ----cpu----
r b swpd free buff cache si so bi bo in cs us sy id wa
0 0 346036 1017716 19312 331832 48 145 73 189 606 190 16 2 75 7
1 0 346036 1015972 19320 331824 0 0 9 82 1189 494 34 3 63 0
0 0 346036 1008156 19332 332072 0 0 20 134 1364 594 36 3 61 0
1 0 346036 1009820 19340 332064 0 0 0 91 1153 300 12 1 87 0
0 0 346036 1009844 19348 332056 0 0 1 83 1165 216 13 1 87 0
Linux Distro and Version
Linux 2.6.9-42.ELsmp
Log File(s)
Problem:
Tasks: 580 total, 1 running, 579 sleeping, 0 stopped, 0 zombie
I keep getting too many sleeping processes (300-500) - making the load shoot to 20-50 within 30 minutes.
I stop apache, and restart it in 5 minutes, everythings fine.
Cycle repeats.
Where can I stop this? By editing the httpd.conf file?
Which setting would it be under?
I was wondering why are there so many Httpd processes running?
Code:
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.0 4808 656 ? Ss Apr17 0:00 init [3]
root 5579 0.0 0.0 3660 580 ? Ss Apr17 0:00 syslogd -m 0
named 5596 0.0 0.0 51260 3064 ? Ssl Apr17 0:00 /usr/sbin/named -u named -n1 -c /etc/named.conf -u named -t /
root 5612 0.0 0.0 23000 1228 ? Ss Apr17 0:00 /usr/sbin/sshd
root 5620 0.0 0.0 8748 908 ? Ss Apr17 0:00 xinetd -stayalive -pidfile /var/run/xinetd.pid
root 5679 0.0 0.0 6432 1192 ? S Apr17 0:00 /bin/sh /usr/bin/mysqld_safe --defaults-file=/etc/my.cnf --pi
mysql 5713 1.2 1.0 152112 43796 ? Sl Apr17 28:39 /usr/libexec/mysqld --defaults-file=/etc/my.cnf --basedir=/us
qmails 5771 0.0 0.0 2612 492 ? S Apr17 0:00 qmail-send
qmaill 5773 0.0 0.0 2560 496 ? S Apr17 0:00 splogger qmail
root 5774 0.0 0.0 2600 400 ? S Apr17 0:00 qmail-lspawn ./Maildir/
qmailr 5776 0.0 0.0 2600 432 ? S Apr17 0:00 qmail-rspawn
qmailq 5777 0.0 0.0 2556 380 ? S Apr17 0:00 qmail-clean
root 5798 0.0 0.0 9740 944 ? Ss Apr17 0:00 crond
root 27839 0.0 0.4 165396 16396 ? Ss 18:09 0:00 /usr/sbin/httpd
apache 27853 0.5 0.4 225028 19380 ? S 18:09 0:18 /usr/sbin/httpd
apache 27855 0.5 0.4 223784 18060 ? S 18:09 0:21 /usr/sbin/httpd
apache 27861 0.5 0.4 224336 18696 ? S 18:10 0:19 /usr/sbin/httpd
apache 27862 0.5 0.4 223276 17408 ? S 18:10 0:19 /usr/sbin/httpd
apache 27876 0.3 0.4 223892 18248 ? S 18:10 0:13 /usr/sbin/httpd
apache 27877 0.5 0.4 223936 18284 ? S 18:10 0:18 /usr/sbin/httpd
apache 27878 0.4 0.4 222672 16728 ? S 18:10 0:15 /usr/sbin/httpd
apache 27879 0.2 0.4 224328 18588 ? S 18:10 0:08 /usr/sbin/httpd
apache 27880 0.5 0.4 224164 18528 ? S 18:10 0:20 /usr/sbin/httpd
apache 27915 0.2 0.4 224072 18380 ? S 18:10 0:10 /usr/sbin/httpd
apache 27916 0.5 0.5 226436 20704 ? S 18:10 0:18 /usr/sbin/httpd
apache 27917 0.5 0.4 223208 17236 ? S 18:10 0:19 /usr/sbin/httpd
apache 31980 0.4 0.4 223152 17156 ? S 18:31 0:09 /usr/sbin/httpd
apache 32121 0.3 0.5 226344 20612 ? S 18:32 0:07 /usr/sbin/httpd
apache 32205 0.6 0.4 224272 18616 ? S 18:33 0:13 /usr/sbin/httpd
apache 1749 0.4 0.4 224520 18896 ? S 18:42 0:07 /usr/sbin/httpd
apache 1752 0.5 0.4 223272 17204 ? S 18:42 0:09 /usr/sbin/httpd
apache 1759 0.6 0.4 223316 17344 ? S 18:42 0:11 /usr/sbin/httpd
apache 1760 0.6 0.4 222940 16960 ? S 18:42 0:10 /usr/sbin/httpd
apache 1789 0.3 0.4 223372 17392 ? S 18:42 0:06 /usr/sbin/httpd
apache 1893 0.4 0.4 223256 17264 ? S 18:43 0:06 /usr/sbin/httpd
root 3469 0.0 0.0 41260 3036 ? Ss 18:47 0:00 sshd: root@pts/0
root 3478 0.0 0.0 6588 1524 pts/0 Ss 18:47 0:00 -bash
apache 5175 0.7 0.4 171244 17208 ? S 18:52 0:07 /usr/sbin/httpd
apache 9237 0.7 0.4 223288 17236 ? S 19:08 0:00 /usr/sbin/httpd
apache 9260 0.2 0.3 170156 15756 ? S 19:08 0:00 /usr/sbin/httpd
apache 9454 0.7 0.3 170576 16128 ? S 19:09 0:00 /usr/sbin/httpd
root 9558 0.0 0.0 5484 836 pts/0 R+ 19:10 0:00 ps -aux
thanks!
And I just upgraded my Vps to 256mb how does the new spec compare to other 256 vps systems:
Code:
Processing UBC version 2.5 for VEID: 44763202
Wed Apr 18 19:17:27 CEST 2007 s15248973.onlinehome-server.com
19:17:27 up 1 day, 14:39, 1 user, load average: 0.49, 0.41, 0.30
-----------------------------------------------
****** vmguarpages and oomguarpages limits are unspecified
****** each VE privvmpages limit should be <= 0.6 * RAM (=1228 MB), probably [much] lower.
563 MB Allocation Limit [privvmpages limit]
****** only high value processes have a chance in this range
****** having this safety range is important to permit critical processes
512 MB Allocation Barrier [privvmpages barrier]
****** allocation requests in this range have a chance
64 MB Allocation Guarantee [vmguarpages barrier]
****** allocation will succeed in this range
256 MB Memory Guarantee [oomguarpages barrier]
416 MB ( 419 MB Max) page memory allocated [privvmpages held]
229 MB ( 231 MB Max) memory + swap used [oomguarpages held]
229 MB ( 231 MB Max) page memory used [physpages held]
33 MB ( 33792 KB) kernel memory limit [kmemsize limit]
****** a safety range here, between limit and barrier, is important
30 MB ( 30720 KB) kernel memory barrier [kmemsize barrier]
16 MB ( 16497 KB) kernel memory used [kmemsize held]
0 MB ( 910 KB) buffer memory used [*buf held]
-----------------------------------------------
Used : Max_Used : Limit for Other Resources
1779 1785 8192 numfile
6 8 413 numflock
14 14 150 numiptent
11 15 720 numothersock
54 55 128 numproc
1 1 32 numpty
0 1 512 numsiginfo
46 47 720 numtcpsock
-----------------------------------------------
Fail Count conditions: 1
privvmpages 106709 107460 131072 144180 870
On jaguarpc.com, their terms of service state,
"We do not allow programs to run continually in the background. This is to minimize system resources used and operational maintenance needed. We do not allow any chat or topsite programs on our servers other than the ones we pre-install for our clients to use. IRC: We currently DO NOT allow IRC or IRC bots to be operated on our network."
I thought the whole point of using a VPS was so you could run a continuous application (like a chat/game/etc server)? Why are so many VPS services against IRC (the chat server I use is not IRC based, but I just think its wierd so many prohibit IRC)
