Server Monitoring - Siteuptime Starting To Give False Alerts
Jun 26, 2008
Being using the free version of siteuptime.com but this month alone i have had so far 3 false alerts reported, i am always in the putty and does not get interrupted, and i am sure i am around on the site too while supposedly siteuptime reports down (i am guessing firewall blocks their server ip for w/e reason). So am wondering is there any really good public tracking site out there which can do public reports more accurately and not kak out on me?
Whats your experience with siteuptime for monitoring if any ? Sometimes it works "ok" other times its just off the charts.
View 9 Replies
ADVERTISEMENT
Sep 1, 2008
Is anyone having problems with their stats on siteuptime.com?
View 6 Replies
View Related
Mar 30, 2008
I have been using siteuptime.com and they seem to be working well, but since I do a content check (making sure vBulletin and MySQL are working) and I want two minute checks, I pay two extra $5 charges, so it comes out to $15 to check my one site.
I read about hyperspin the other day and they do 2 minute checks (with content check - looking for keywords on page) for around $5 a month.
So, from a cost perspective hyperspin is a third of the cost of siteuptime for my needs (2 minute check, look for keywords).
I am curious about people that have used both. Are they both equally reliable? Has anyone had any problems with hyperspin?
View 10 Replies
View Related
Apr 22, 2015
I keep receiving emailed alerts with subject like:
"<server name> alarm level changed"
with content like:
Server health parameter "Memory > Real memory usage" changed its status from "green" to "yellow".
or
Server health parameter "Services > Apache CPU usage" changed its status from "red" to "yellow".
(and then a readout of the top command)
1) Where in Plesk can I see live alerts (or a historical log of these alerts)
2) Where can I change the settings (I think it may be too sensitive and the thresholds need to be adjusted)
3) I don't quite understand the alerts in general either, for example, the "Memory > Real memory usage", the TOP command output is for example:
top - 12:19:59 up 4:56, 1 user, load average: 0.21, 0.21, 0.21
Tasks: 255 total, 1 running, 254 sleeping, 0 stopped, 0 zombie
Cpu(s): 5.5%us, 0.7%sy, 0.2%ni, 92.8%id, 0.8%wa, 0.0%hi, 0.1%si, 0.0%st
Mem: 5967176k total, 2539756k used, 3427420k free, 134972k buffers
Swap: 4194300k total, 788k used, 4193512k free, 664916k cached
More than half the memory is unused, very little swap is in use. I don't even see a reason to be warning about this.
View 4 Replies
View Related
Apr 17, 2009
I have the same error mentioned in this old tread:
[url]
Once in a while the user have "Internal server error"
when accessing any php page.
The php is php v4 compile as fastcgi on Centos 5.
The warning/error sequins is always like this:
[Fri Apr 17 09:09:49 2009] [warn] FastCGI: (dynamic) server "/home/fastcgi-scripts/abc.fcgi" (pid 22726) termination signaled
[Fri Apr 17 09:09:49 2009] [warn] FastCGI: (dynamic) server "/home/fastcgi-scripts/abc.fcgi" (pid 22726) terminated by calling exit with status '0'
[Fri Apr 17 09:09:49 2009] [error] [client 127.0.0.1] FastCGI: incomplete headers (0 bytes) received from server "/home/fastcgi-scripts/abc.fcgi", referer:
[url]
View 2 Replies
View Related
Dec 5, 2007
Not a virtual machine, sorry for typo. The OS is Fedora,
View 8 Replies
View Related
May 19, 2009
I have install VNC on my test VPS.
I download tightvnc and play with it just fine, everything working like it should.
But, I just want to SSH to the VPS and now it give me "Server unexpectedly closed network connection"
I need to know how can I ssh into my vps again.
Can I just reboot the server and relogin again?
View 1 Replies
View Related
Sep 8, 2007
I want to start my own web server it will be hosting company for future. I will host to 100-200 domain and web sites as begining. Os will be linux red hat with cpanel.
My system will be;
HP ProLiant DL385 G2 (438816-421 HP DL385G2 2220) Two
opteron cpu's
Ram 8gb
HDD 8x HP 146GB 10K SAS 2.5 Hot Plug Hard Drive
Fire wall Cisco Pix 515e
My questions;
What can I do for this server works non stop 7/24 if any problem happen hw or sw base?
How many of same system I have to buy?
For example if I need to buy 2 of them. What kind of setup I need? (Like mirror, load balancing, vps, proxy) or if there are some hw base systems, what is your succes?
View 5 Replies
View Related
Sep 27, 2008
I have seen many people who run and maintain their own dedicated/servers, now i am thinking of having one of my own. Ive done some research and know the basics in terms of what to install and the hardware side of things.
If i run it from home on a very good PC how can i allocate bandwidth from people such as "The Planet" etc.. will i be able to pay for what i use only instead of paying a very high lump sum cooperate price, as i will be starting off new and experimenting things.
I would ideally want to run and host game servers. If you think the above wont suffice then what company could i approach in terms of getting me off the floor without having to pay a lot of money before im fully established?
View 14 Replies
View Related
Mar 23, 2008
I have one main server with various virtual servers installed on it. however I do not succeed in restarting one of the virtual server. i receive javascript errors(see attachment).
I have put all the security settings to low,enable scripts etc. and still it doesn't work.
View 4 Replies
View Related
Jun 23, 2008
I want to know how can I setup a VPN server on a centos 4 server through ssh?
not willing to sell vpn accounts, just for personal use.
I've searched a lot, but mostly centos was not listed, and the tutorials were so complicated.
View 3 Replies
View Related
Jun 30, 2008
Rootkit Hunter version 1.3.2 ]
[1;33mChecking rkhunter version... [0;39m
This version : 1.3.2
Latest version: 1.3.2
[ Rootkit Hunter version 1.3.2 ]
[1;33mChecking rkhunter data files... [0;39m
Checking file mirrors.dat [34C[ [1;32mNo update [0;39m ]
Checking file programs_bad.dat [29C[ [1;32mNo update [0;39m ]
Checking file backdoorports.dat [28C[ [1;32mNo update [0;39m ]
Checking file suspscan.dat [33C[ [1;32mNo update [0;39m ]
Checking file i18n/cn [38C[ [1;32mNo update [0;39m ]
Checking file i18n/en [38C[ [1;32mNo update [0;39m ]
Checking file i18n/zh [38C[ [1;32mNo update [0;39m ]
Checking file i18n/zh.utf8 [33C[ [1;32mNo update [0;39m ]
Warning: Checking for preload file [ Warning ]
Warning: Found library preload file: /etc/ld.so.preload
Warning: The file properties have changed:
File: /bin/ps
Current hash: 36f3d8a9fcaebf5838e5e55ebdcac7e355477343
Stored hash : 8f1acf237e562043f8353f4ec5d0c3490c0d0cb3
Current inode: 1228803 Stored inode: 1228857
Current size: 61364 Stored size: 67088
Current file modification time: 1214487892
Stored file modification time : 1195262225
Warning: The command '/usr/bin/GET' has been replaced by a script: /usr/bin/GET: perl script text executable
Warning: The command '/usr/bin/groups' has been replaced by a script: /usr/bin/groups: Bourne shell script text executable
Warning: The command '/usr/bin/ldd' has been replaced by a script: /usr/bin/ldd: Bourne shell script text executable
Warning: The file properties have changed:
File: /usr/bin/top
Current hash: 15f1f743d73d9546a05a15644816139de7708327
Stored hash : 5e78fb7f0a02643a91964081ca03316dbaf01bdd
Current inode: 246165 Stored inode: 245920
Current size: 48536 Stored size: 48504
Current file modification time: 1214487892
Stored file modification time : 1195262225
Warning: The file properties have changed:
File: /usr/bin/vmstat
Current hash: 898351bc3be226caf6915715b23a1c7cc5d35fdd
Stored hash : edaa64f3921a0a2d873c14a5eb641ba883f4dcff
Current inode: 246561 Stored inode: 246020
Current size: 17872 Stored size: 20444
Current file modification time: 1214487892
Stored file modification time : 1195262225
Warning: The file properties have changed:
File: /usr/bin/w
Current hash: 480c2c2e4f1048e19fc075f4daebe79fa84e08d1
Stored hash : 87f39eeb583bc7f6622e95fd0266f093ed8b362b
Current inode: 246020 Stored inode: 246167
Current size: 9720 Stored size: 11720
Current file modification time: 1214487892
Stored file modification time : 1195262225
Warning: The file properties have changed:
File: /usr/bin/watch
Current inode: 246167 Stored inode: 245924
Current file modification time: 1214487892
Stored file modification time : 1195262225
Warning: The command '/usr/bin/whatis' has been replaced by a script: /usr/bin/whatis: Bourne shell script text executable
Warning: The command '/sbin/ifdown' has been replaced by a script: /sbin/ifdown: Bourne-Again shell script text executable
Warning: The command '/sbin/ifup' has been replaced by a script: /sbin/ifup: Bourne-Again shell script text executable
Warning: The file properties have changed:
File: /sbin/sysctl
Current hash: b560099caf18d28bcc0249efaec75dcddb87b219
Stored hash : fa13202ac5897d9f7198e8afbbe7d0c835b07639
Current inode: 589893 Stored inode: 589875
Current size: 9144 Stored size: 11048
Current file modification time: 1214487892
Stored file modification time : 1195262225
I know some of these warnings like /usr/bin/GET - groups -ldd - whatis - ifdown – ifup are normal false positives.
But other warnings are new,
I think they changed after upgrading the cpanel to 11.23
I have cpanel on centos 4.6
View 6 Replies
View Related
May 21, 2008
After few days of not getting even "one" spam out of average 70 messages a day...the company manager got angry! He thought the mail system is down.
Our provider - a VDS subscriber who rent us shared plan for a website - said: we changed nothing. I confirmed: did you install any new anti-spam software on the site...they said: NO.
In a next conversation with the company manager, they told him they installed a new anti-spam software on the whole server and cannot make it off for our site specifically.
The problem is, they already had a kind of anti-spam software which only "marks" spam-like messages with "**SPAM**" in the subject line, and doesn't mark others. I am afraid some customers' emails get marked and deleted with this new software they claim implemented, based on false positives.
Many times I get my emails in Yahoo and Hotmail go to Spam/Junk folder for some not-widely known reasons, like sending to myself, while putting recipients in CC, and other strange reasons like just using CC in an auto-reply!
something any non-tech person might do.
I am thinking in switching to a new host where we only host mails (mx record), so we don't have "any" email deleted without our check.
View 5 Replies
View Related
Jun 13, 2007
I was surprised to see that they had 100% uptime in May according to their logs. I am used to see 99.98%, 98.97% etc. etc. with other hosts. But even 100% is quite possible.
On June 7th the uptime suddenly dropped below 96% with avg. 7 outages. I was really disappoined as I was planning to signup. But after a day or so it again rose to 100% with 0 outages on all of their servers which clearly explained the 100% uptime of May.
According to them they had a attack because of which IPs of nodes had to be changed and subsequently they also changed it on hyperspin.com (their server monitoring service). I immediately signed up on hyperspin to verify this claim. Changing the IP or hostname of a monitored service on hyperspin doesn't reset its log is what i clearly observed. Its quite visible that the logs were reset intensionally to hide the actual server uptime and make it always show 100% percent. When i reverted back to them on this issue, they prefered to close the ticket. I just want to know from other hosts, it this practice common or primaryvps.com is an exception? Well as mentioned on their site, the uptime log is located at:
hyperspin.com/publicreport/30037/20077
But don't expect too much. It has only two figures 0 for outages and 100% for uptime.
View 14 Replies
View Related
Feb 4, 2007
Does anyone know of a service whic will allow a webmaster of a website to send news alerts via SMS to visitors mobile phones?
View 2 Replies
View Related
Oct 21, 2008
I would like to start selling dedicated servers.So how can I start with?
View 13 Replies
View Related
Jul 23, 2008
i'm setting up a webhost and am considering VPS hosting
i would like to know what specifications and how many of those accounts you would reccomend hosting on this server.
the specifications of the server are:
• AMD Dual Core 64-bit 4200+
• 1 GB RAM
• 160 GB Hard Drive
i am looking to set this up for as cheap as possible and sofar only know of Virtuozzo that can do this is there any other software that can do this, and what control panel would you reccomend.
View 14 Replies
View Related
Mar 11, 2008
I don't really know much about how mod_security rules work, I've just clicked on default configuration in WHM.
Anyway one user on our vbulletin board has pmed me saying he can't access the board. He gave me his fixed ip. And I noticed it is in CSF denied ip list as:
lfd: 5 (mod_security) login failures from xx.xx....
I've checked mod_security log and it has like twenty entries for this ip saying: ....
View 3 Replies
View Related
Mar 25, 2007
Is there any way to avoid getting false name lookups when trying to resolv inexistent domains ? apart from using another nameserver.
I'm sorry if it was posted earlier, tried searching but it didn't help as it gave me large results.
Code:
[root@removed ~]# ping hjkdji284kajgafhj87da778dfsd.com
PING hjkdji284kajgafhj87da778dfsd..com.insertdchere.com (xx.xxx.xxx.xx) 56(84) bytes of data.
64 bytes from www.insertdchere.com (xx.xxx.xxx.xx): icmp_seq=0 ttl=61 time=1.00 ms
64 bytes from www.insertdchere.com (xx.xxx.xxx.xx): icmp_seq=1 ttl=61 time=0.952 ms
64 bytes from www.insertdchere.com (xx.xxx.xxx.xx): icmp_seq=2 ttl=61 time=1.34 ms
View 2 Replies
View Related
Aug 11, 2009
I installed XAMPP a few weeks ago and had a php website working on my localhost – all worked fine no probs. To do this I had to stop my IIS server as this was also using port:80 which is what XAMPP is set to use as default. Now for some reason when I started IIS again a few days ago to do some asp development work and then stopped it again, the apache server would not start even though I’ve definitely stopped IIS. I have tried uninstalling and re-installing XAMPP, but it still won’t start. I tried running the apache_start.bat from the command line and I got the following error message:
"An attempt was made to access a socket in a way forbidden by its
access permissions": make_sock: unable to listen for connections on address 0.0.0.0:80 no listening sockets available, shutting down
Apache could not be started
If I try and start Apache from the XAMPP control panel it just says Apache:stopped and the message in the bottom window is ERROR: Apache service not started [-1]
I was just wondering if you had come across this problem before? If yes, how did you resolve it? Someone mentioned changing the port, but being a bit new to apache and XAMPP I’m not really sure what would need to change in what config files.
View 4 Replies
View Related
Mar 8, 2008
Starting FILEHOSTING site. Need a Fast server..
I am mostly looking for Unmetered Servers. Like FDC, but their servers are too slow as i heard from some of my friends.
Any other servers that are unmetered and offer good speeds?
I want a shared 100mbit for the start, maybe i will upgrade later.
I currently have 10mbit unmetered, but thats not enough for filehosting sites.
View 14 Replies
View Related
Apr 22, 2008
How can I stop the rootkit hunter false positives?
It is alerting on these, on a fresh OS install:
Checking for prerequisites [ Warning ]
/usr/bin/groups [ Warning ]
/usr/bin/ldd [ Warning ]
/usr/bin/whatis [ Warning ]
/sbin/ifdown [ Warning ]
/sbin/ifup [ Warning ]
View 2 Replies
View Related
Feb 17, 2008
Probably an easy question and I am just not seeing it, but how do you set which email address you want CSF alerts sent to?
View 5 Replies
View Related
May 4, 2009
How to stop lfd mail from csf as Suspicious process running under user and Excessive resource usage?
View 7 Replies
View Related
Nov 5, 2009
We have about 100 servers using CSF, and CSF is generating A LOT of mail alerts.. which is causing us to receive over 1000 mails daily, just from CSF alerts.. this doesn't include support emails or others.
My question..
How do you handle mail alerts when you have lot of servers? See... i can not waste 5 hours reading every mail.. even if I start deleting those mails a lot of important and critical alerts can be erased in the process..
How do you filter or handle this kind of things?
View 0 Replies
View Related
Feb 12, 2007
I have started having daily numproc black alerts on my VPS. Tech Support have increased the numproc limit already to 1500 but say that I will need a dedicated server, that's the last I have heard. I'd like to know if there is anything I can do to limit this numproc problem without the need to get a dedicated server. The numproc alerts seem to be getting more frequent but the visitors to the site are not increasing. Here are the details:
2 x AMD Opteron(tm) Processor 244, 904.127 MHz, cache size: 1024 KB
Linux 2.6.8-022stab078.21-enterprise #1
Apache/1.3.36 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.2 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.27 OpenSSL/0.9.7a
Cpanel
Only one site is hosted on the VPS. Includes phpbb forum & various php / mysql sections like an affiliate store & photo gallery. Averaging about 11000 visitors/day
I tried to run /proc/user_beancounters & ps axv commands when the numproc was maxed this morning but could not log in to run it so these are the ones I ran yesterday.
Code:
uid resource held maxheld barrier limit failcnt
132: kmemsize 13786145 13803842 39485440 40632320 0
lockedpages 0 0 1024 1024 0
privvmpages 110039 110045 262144 278528 17
shmpages 731 731 86016 86016 0
dummy 0 0 0 0 0
numproc 683 683 1500 1500 4709595
physpages 62578 62580 0 2147483647 0
vmguarpages 0 0 135168 2147483647 0
oomguarpages 66597 66599 104448 2147483647 0
numtcpsock 47 49 1440 1440 0
numflock 11 11 752 824 0
numpty 1 1 64 64 0
numsiginfo 0 1 1024 1024 0
tcpsndbuf 92552 112604 6881280 10813440 0
tcprcvbuf 692 1384 6881280 10813440 0
othersockbuf 98524 103180 4504320 8388608 0
dgramrcvbuf 0 0 1048576 1048576 0
numothersock 123 123 1440 1440 0
dcachesize 619920 622790 9093120 9666560 0
numfile 2434 2435 23280 23280 0
dummy 0 0 0 0 0
dummy 0 0 0 0 0
dummy 0 0 0 0 0
numiptent 47 47 512 512 0
Code:
PID TTY STAT TIME MAJFL TRS DRS RSS %MEM COMMAND
1 ? Ss 0:00 0 26 1593 552 0.0 init
15751 ? Ss 0:00 0 28 1495 596 0.0 syslogd -m 0
15761 ? S 0:00 0 10 1437 456 0.0 /usr/sbin/courierlogger -pid=/var/spool/authdaemon/pid -facility=mail -start /usr/libexec/courier-authlib/authdaemond
15762 ? S 0:00 0 13 1782 576 0.0 /usr/libexec/courier-authlib/authdaemond
15786 ? S 0:00 0 13 1782 616 0.0 /usr/libexec/courier-authlib/authdaemond
15787 ? S 0:00 0 13 1782 596 0.0 /usr/libexec/courier-authlib/authdaemond
15788 ? S 0:00 0 13 1782 616 0.0 /usr/libexec/courier-authlib/authdaemond
15789 ? S 0:00 0 13 1782 616 0.0 /usr/libexec/courier-authlib/authdaemond
15790 ? S 0:00 0 13 1782 584 0.0 /usr/libexec/courier-authlib/authdaemond
15799 ? Ssl 0:00 8 269 39030 2664 0.0 /usr/sbin/named -u named
15814 ? Ss 0:01 3 296 3711 1704 0.0 /usr/sbin/sshd
15825 ? Ss 0:00 2 138 1933 864 0.0 xinetd -stayalive -pidfile /var/run/xinetd.pid
15836 ? S 0:00 0 573 1570 1068 0.0 /bin/sh /usr/bin/mysqld_safe --datadir=/var/lib/mysql --pid-file=/var/lib/mysql/server.surfing-waves.com.pid
15861 ? Sl 0:01 40 4000 108171 26516 0.7 /usr/sbin/mysqld --basedir=/ --datadir=/var/lib/mysql --user=mysql --pid-file=/var/lib/mysql/server.surfing-waves.com.pid --skip-external-locking
15907 ? S 0:00 0 829 8938 7388 0.2 chkservd
15923 ? S 0:00 0 10 1441 468 0.0 /usr/sbin/courierlogger -pid=/var/run/imapd.pid -start -name=imapd /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 143 /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15924 ? S 0:00 0 44 1515 512 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 143 /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15934 ? S 0:00 0 10 1441 400 0.0 /usr/sbin/courierlogger -pid=/var/run/imapd-ssl.pid -start -name=imapd-ssl /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 993 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15935 ? S 0:00 0 44 1515 492 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 993 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/imaplogin /usr/lib/courier-imap/bin/imapd Maildir
15940 ? S 0:00 0 10 1441 472 0.0 /usr/sbin/courierlogger -pid=/var/run/pop3d.pid -start -name=pop3d /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 110 /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15941 ? S 0:00 0 44 1515 512 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 110 /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15946 ? S 0:00 0 10 1441 400 0.0 /usr/sbin/courierlogger -pid=/var/run/pop3d-ssl.pid -start -name=pop3d-ssl /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 995 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15950 ? S 0:00 0 44 1515 492 0.0 /usr/lib/courier-imap/libexec/couriertcpd -address=0 -maxprocs=40 -maxperip=30 -nodnslookup -noidentlookup 995 /usr/lib/courier-imap/bin/couriertls -server -tcpd /usr/lib/courier-imap/sbin/pop3login /usr/lib/courier-imap/bin/pop3d Maildir
15971 ? Ss 0:00 0 678 6669 1880 0.0 /usr/sbin/exim -bd -q60m
15977 ? Ss 0:00 0 678 6669 1800 0.0 /usr/sbin/exim -tls-on-connect -bd -oX 465
15982 ? S 0:00 0 829 2214 1584 0.0 antirelayd
16024 ? Ss 0:00 1 829 24742 19592 0.5 /usr/bin/spamd -d --allowed-ips=127.0.0.1 --pidfile=/var/run/spamd.pid --max-children=5
16046 ? Ss 0:07 2 533 13126 5752 0.1 /usr/local/apache/bin/httpd -DSSL
16057 ? Ss 0:00 0 36 2435 1040 0.0 crond
16073 ? S 0:03 4 829 28146 25804 0.7 spamd child
16074 ? S 0:00 14 829 25006 22188 0.6 spamd child
16075 ? S 0:54 120 533 16206 9392 0.2 /usr/local/apache/bin/httpd -DSSL
16076 ? S 0:57 154 533 16306 9500 0.2 /usr/local/apache/bin/httpd -DSSL
16077 ? S 0:54 159 533 16426 9628 0.2 /usr/local/apache/bin/httpd -DSSL
16078 ? S 1:00 143 533 16046 9224 0.2 /usr/local/apache/bin/httpd -DSSL
16079 ? S 0:54 191 533 16330 9508 0.2 /usr/local/apache/bin/httpd -DSSL
16131 ? S 0:00 0 829 6754 4892 0.1 eximstats
16160 ? S 0:55 89 533 16222 9424 0.2 /usr/local/apache/bin/httpd -DSSL
16167 ? S 0:00 1 829 6090 4940 0.1 cpbandwd
16168 ? SN 0:03 19 829 15762 13068 0.3 cpanellogd - sleeping for logs
16185 ? S 0:00 0 829 2950 2300 0.0 entropychat
16189 ? S 0:54 167 533 16114 9288 0.2 /usr/local/apache/bin/httpd -DSSL
16190 ? S 0:51 125 533 15974 9176 0.2 /usr/local/apache/bin/httpd -DSSL
16191 ? S 0:00 1 52 1623 552 0.0 /usr/local/cpanel/bin/startmelange
16208 ? Ss 0:00 1 61 9774 4560 0.1 /usr/bin/stunnel-4.15local /usr/local/cpanel/etc/stunnel/default/stunnel.conf.run
16213 ? S 0:53 110 533 16214 9404 0.2 /usr/local/apache/bin/httpd -DSSL
16214 ? S 0:51 133 533 16170 9356 0.2 /usr/local/apache/bin/httpd -DSSL
16217 ? Ss 0:00 0 828 8367 5604 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/mailmanctl -s start
16224 ? Ss 0:00 0 61 3982 1084 0.0 /usr/sbin/saslauthd -m /var/run/saslauthd -a pam -n 1
16247 ? Ss 0:00 0 27 1452 492 0.0 /usr/sbin/portsentry -tcp
16255 ? S 0:00 0 828 8091 5344 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=ArchRunner:0:1 -s
16256 ? S 0:00 0 828 8115 5520 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=BounceRunner:0:1 -s
16257 ? S 0:00 0 828 8111 5164 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=CommandRunner:0:1 -s
16258 ? S 0:00 0 828 8075 5760 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=IncomingRunner:0:1 -s
16259 ? S 0:00 0 828 8087 5356 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=NewsRunner:0:1 -s
16260 ? S 0:00 0 828 8111 4780 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=OutgoingRunner:0:1 -s
16261 ? S 0:00 0 828 8119 5072 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=VirginRunner:0:1 -s
16262 ? S 0:00 0 828 8119 4672 0.1 /usr/local/bin/python2.4 /usr/local/cpanel/3rdparty/mailman/bin/qrunner --runner=RetryRunner:0:1 -s
22479 ? S 0:00 0 2127 6332 6232 0.1 /etc/authlib/authProg
28484 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
28488 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
5372 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
25825 ? S 0:02 0 3552 8707 10792 0.3 cpsrvd - waiting for connections
7655 ? S 0:00 0 2127 6332 6996 0.2 /etc/authlib/authProg
19601 ? S 0:07 5 533 15518 8700 0.2 /usr/local/apache/bin/httpd -DSSL
30024 ? Ss 0:00 3 106 5765 1812 0.0 pure-ftpd (SERVER)
30027 ? S 0:00 0 8 3559 928 0.0 /usr/sbin/pure-authd -s /var/run/ftpd.sock -r /usr/sbin/pureauth
3949 ? S 0:01 0 3552 9059 11152 0.3 whostmgrd - serving 127.0.0.1
3950 ? S 0:00 0 7839 15344 21744 0.6 /usr/local/cpanel/whostmgr/bin/whostmgr2 ./managepid
3951 ? Z 0:00 0 0 0 0 0.0 [ps] <defunct>
3952 ? S 0:01 2 166 1477 532 0.0 strace -p 16260
9881 ? S 0:00 1 533 15450 8612 0.2 /usr/local/apache/bin/httpd -DSSL
11712 ? S 0:00 1 533 15454 8620 0.2 /usr/local/apache/bin/httpd -DSSL
11749 ? S 0:00 2 533 15490 8656 0.2 /usr/local/apache/bin/httpd -DSSL
14310 ? Ss 0:00 0 296 6603 2184 0.0 sshd: surfingw [priv]
15455 ? S 0:00 0 296 6603 2248 0.0 sshd: surfingw@ttyp0
15457 ttyp0 Ss 0:00 0 573 1578 1276 0.0 -bash
20096 ? S 0:00 0 533 13258 5904 0.1 /usr/local/apache/bin/httpd -DSSL
20103 ? S 0:00 0 533 13258 5904 0.1 /usr/local/apache/bin/httpd -DSSL
20104 ? S 0:00 0 533 13270 5924 0.1 /usr/local/apache/bin/httpd -DSSL
20136 ttyp0 R+ 0:00 0 56 2207 680 0.0 ps axv
View 8 Replies
View Related
Mar 12, 2008
Got this error on rkhunter 1.3.2
Quote:
[12:16:24] /usr/bin/wget [ Warning ]
[12:16:24] Warning: File '/usr/bin/wget' has the immutable-bit set.
Is that a concern? What does it mean?
View 5 Replies
View Related
Jul 9, 2007
I tried a little searching both in Google and on here but this is probably going to be a private or member-based thing anyway.
I've gotten a couple comments that some of my outbound personal mail is ending up in spam folders. I think it's almost completely limited to having Outlook (or Express?) as a client... which I assume doesn't even do network-based lookups. Nonetheless I don't seem to be on any blacklists, and running it through my own spamassassin filter comes up basically zero score. But the fact that more than one person has had the problem concerns me greatly. Also, I haven't seen any significant reason why the content itself would trigger anything.
I realize a public spam test service would basically be a "testing ground" for spammers to evade detection, but there's obviously legitimate uses as well... is there such a tool somewhere? Thanks for any advice. Public information sharing is key to a forum, but PMs are welcome in this case.
View 0 Replies
View Related
May 9, 2007
I configured monit to send me email alerts when apache is using too many resources but I cannot receive email alerts. I use Qmail.
As for syslog, there is this message:
monit[6473]: Sendmail: error receiving data from the mailserver 'localhost' -- Resource temporarily unavailable
I tried to add for server name the name used in MX record but with the same result.
Btw: other things configured in cron (eg. RKHUNTER) send me alerts OK.
View 0 Replies
View Related
Jul 5, 2008
My sites have been receiving a little more traffic these days (but not too much) and it seems my vps is slowing and at times vbulletin/wordpress page doesn't loads or loads a bit sluggishly (refreshing the page gets rids of not loading issue but not sluggishness).
So I logged into Virtozzo and saw the following QOS alerts:
Jul 05, 2008 11:38:25 AM Green zoneGreen zone kmemsize
Jul 05, 2008 11:38:25 AM Green zoneGreen zone tcpsndbuf
Jul 05, 2008 11:34:54 AM Green zoneGreen zone privvmpages
Jul 05, 2008 11:33:54 AM Yellow zoneYellow zone privvmpages
Jul 05, 2008 11:33:15 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:33:15 AM Black zoneBlack zone tcpsndbuf
Jul 05, 2008 11:28:05 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:28:05 AM Black zoneBlack zone tcpsndbuf
Jul 05, 2008 11:27:55 AM Red zoneRed zone tcpsndbuf
Jul 05, 2008 11:22:55 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:22:54 AM Black zoneBlack zone tcpsndbuf
Jul 05, 2008 11:17:54 AM Black zoneBlack zone kmemsize
Jul 05, 2008 11:17:45 AM Black zoneBlack zone tcpsndbuf
Jul 03, 2008 05:31:29 PM Green zoneGreen zone othersockbuf
Jul 03, 2008 05:26:19 PM Black zoneBlack zone othersockbuf
I have previously seen tcpsndbuf going into yellow and even black zone (but only once in a blue moon) however never saw kemsize going into black zone.
These are the limits my host has set:
IDCurrent UseSoft LimitHard LimitUnits
tcpsndbuf301,8602,580,4804,055,040bytes
kmemsize9,135,28929,614,08030,474,240bytes
othersockbuf17,8881,689,1203,145,728bytes
My Cpanel VPS has around 384MB of dedicated ram and around 896Mb of burst Ram. At any given time, there is at least 150Mb of free dedicated RAM. So based on this, are these values correct or they need to be changed or do I need to look for something else which might be causing this problem?
I don't run Spamassassin
View 4 Replies
View Related
