Slow Log Messages To Syslog
Dec 8, 2008Is there any way with mysql 5.0 to send query and slow
log messages (e.g. mysql-slow log and/or mysql-query
log messages) to syslog ?
I want to visualize my mysql report online. ( like use Rsyslog )
ADVERTISEMENT
Syslog Server
Apr 24, 2009im trying to find a good solution for centralized syslog managmenet and analysis. Basically im sick of reading all those logwatch mails
Is there anyone that could point me to the 'Best' solution to go with?.
It should run on a linux server, vmware appliance will do as well.
If there is no linux solution - which i doubt - than i will also consider having a windows solution.
I looked at ManageEngine Eventlog Analyzer which is kinda what im looking for - but the pricing is not what i expected.
Its more than ok if it is a paid solution you are offering or pointing to!
Syslog Reader
Jun 13, 2007I am trying to find a nice web based tool, php or whatever to view and search syslogs.
View 5 Replies View RelatedWindows Syslog
Sep 28, 2007Windows has a variety of items that it logs locally, logins, security alerts, etc, etc. Is there a software solution that can take computer level activity i.e. logins, security alerts, etc, etc and log it to a local or remote syslog server?
View 2 Replies View RelatedWebmin Bandwidth Monitoring, Syslog-ng
Jul 6, 2007I have been using webmin's bandwidth monitoring function for a while but (as anyone who's ever used it) i have a few issues:
3 huge (~250MB and growing) log files: /var/log/bandwidth, kern.log and syslog.
also the 'dmesg' only outputs these log messages:
BANDWIDTH_IN:IN=eth0 OUT= MAC=00:16:3e:00:00:c6:00:0c:db:0d:e2:4c:08:00 SRC=89.181.46.133 DST=83.246.72.186 LEN=92 TOS=0x00 PREC=0x00 TTL=116 ID=36035 DF PROTO=TCP SPT=4399 DPT=22 WINDOW=64711 RES=0x00 ACK PSH URGP=0
BANDWIDTH_OUT:IN= OUT=eth0 SRC=83.246.72.186 DST=89.181.46.133 LEN=92 TOS=0x10 PREC=0x00 TTL=64 ID=42455 DF PROTO=TCP SPT=22 DPT=4399 WINDOW=10720 RES=0x00 ACK PSH URGP=0
I installed syslog-ng in hopes that i could change this behaviour but to no avail. the real problem i see is that shorewall/iptables only logs to "kern" facility...
has anyone found a way arround this? maybe even using some other firewall?
/var/log/messages Flooded With Kernel Messages
Feb 6, 2007I have just noticed that for several days I'm constantly receiving these infos in /var/log/messages. I haven't done anything that would invoke them. How can I disable these messages? Are they anything to worry about?
Code:
Feb 6 14:28:18 server kernel: [<c014f600>] find_extend_vma+0x12/0x4f
Feb 6 14:28:18 server kernel: [<c0134383>] get_futex_key+0x39/0x108
Feb 6 14:28:18 server kernel: [<c011d305>] finish_task_switch+0x30/0x66
Feb 6 14:28:18 server kernel: [<c02cf618>] schedule+0x844/0x87a
Feb 6 14:28:18 server kernel: [<c027734b>] sys_socketcall+0x1df/0x1fb
Feb 6 14:28:18 server kernel: [<c0125bc5>] sys_gettimeofday+0x53/0xac
Feb 6 14:28:18 server kernel: [<c02d137f>] syscall_call+0x7/0xb
Feb 6 14:28:18 server kernel: [<c02d007b>] _read_lock_irq+0x4/0x1e
Feb 6 14:28:18 server kernel: Badness in dst_release at include/net/dst.h:149
Feb 6 14:28:18 server kernel: [<f8d8a555>] ip6_push_pending_frames+0x340/0x369 [ipv6]
Feb 6 14:28:18 server kernel: [<f8d9883f>] udp_v6_push_pending_frames+0x169/0x185 [ipv6]Badness in dst_release at include/net/dst.h:149
Feb 6 14:28:18 server kernel: [<c0278fa8>]
Feb 6 14:28:18 server kernel: [<f8d98e7d>] udpv6_sendmsg+0x622/0x770 [ipv6]
Feb 6 14:28:18 server kernel: [<c027a498>] __kfree_skb+0x55/0xf7
Feb 6 14:28:18 server kernel: [<c027e1b8>] skb_dequeue+0x40/0x46
Feb 6 14:28:18 server kernel: [<c027b009>] net_tx_action+0x60/0xfc
Feb 6 14:28:18 server kernel: [<c0126354>] skb_recv_datagram+0x61/0x9b
Feb 6 14:28:18 server kernel: [<c02b1ed7>] __do_softirq+0x4c/0xb1
Feb 6 14:28:18 server kernel: [<c010814b>] do_softirq+0x4f/0x56
Feb 6 14:28:18 server kernel: =======================
Feb 6 14:28:18 server kernel: [<c0107a60>] do_IRQ+0x1a2/0x1ae
Feb 6 14:28:18 server kernel: [<c02d1d3c>] udp_recvmsg+0x5f/0x271
Feb 6 14:28:18 server kernel: [<c02b7b35>] common_interrupt+0x18/0x20
Feb 6 14:28:18 server kernel: [<c02d007b>] inet_sendmsg+0x38/0x42
Feb 6 14:28:18 server kernel: [<c02757f5>] _read_lock_irq+0x4/0x1e
Feb 6 14:28:18 server kernel: sock_sendmsg+0xdb/0xf7
Feb 6 14:28:18 server kernel: [<c02757f5>] sock_sendmsg+0xdb/0xf7
Feb 6 14:28:18 server kernel: [<c011fee1>] autoremove_wake_function+0x0/0x2d
Feb 6 14:28:18 server kernel: [<c027a89e>] verify_iovec+0x76/0xc2
Feb 6 14:28:18 server kernel: [<c0276f44>] sys_sendmsg+0x1ee/0x23b
Feb 6 14:28:18 server kernel: [<c011cb7d>] activate_task+0x88/0x95
Feb 6 14:28:18 server kernel: [<c011d00a>] try_to_wake_up+0x225/0x230
Feb 6 14:28:18 server kernel: [<c011d00a>] try_to_wake_up+0x225/0x230
Feb 6 14:28:18 server kernel: [<c0170776>] inode_update_time+0x80/0x87
Feb 6 14:28:18 server kernel: [<c0164748>] pipe_writev+0x310/0x31c
Feb 6 14:28:18 server kernel: [<c02cf622>] schedule+0x84e/0x87a
Feb 6 14:28:18 server kernel: [<c027734b>] sys_socketcall+0x1df/0x1fb
Feb 6 14:28:18 server kernel: [<c0125bc5>] sys_gettimeofday+0x53/0xac
Feb 6 14:28:18 server kernel: [<c02d137f>] syscall_call+0x7/0xb
Feb 6 14:28:18 server kernel: [<c02d007b>] _read_lock_irq+0x4/0x1e
Feb 6 14:28:18 server kernel: Badness in dst_release at include/net/dst.h:149
Feb 6 14:28:18 server kernel: [<f8d98ef7>] udpv6_sendmsg+0x69c/0x770 [ipv6]
Feb 6 14:28:18 server kernel: [<c027a498>] skb_dequeue+0x40/0x46
Feb 6 14:28:18 server kernel: [<c027b009>] skb_recv_datagram+0x61/0x9b
Feb 6 14:28:18 server kernel: [<c02b1ed7>] udp_recvmsg+0x5f/0x271
Feb 6 14:28:18 server kernel: [<c02b7b35>] inet_sendmsg+0x38/0x42
Feb 6 14:28:18 server kernel: [<c02757f5>] sock_sendmsg+0xdb/0xf7
Feb 6 14:28:18 server kernel: [<c02757f5>] sock_sendmsg+0xdb/0xf7
Feb 6 14:28:18 server kernel: [<c011fee1>] autoremove_wake_function+0x0/0x2d
Feb 6 14:28:18 server kernel: [<c027a89e>] verify_iovec+0x76/0xc2
Feb 6 14:28:18 server kernel: [<c0276f44>] sys_sendmsg+0x1ee/0x23b
Feb 6 14:28:18 server kernel: [<c011cb7d>] activate_task+0x88/0x95
Feb 6 14:28:18 server kernel: [<c011d00a>] try_to_wake_up+0x225/0x230
Feb 6 14:28:18 server kernel: [<c011d00a>] try_to_wake_up+0x225/0x230
Feb 6 14:28:18 server kernel: [<c0170776>] inode_update_time+0x80/0x87
Feb 6 14:28:18 server kernel: [<c0164748>] pipe_writev+0x310/0x31c
Feb 6 14:28:18 server kernel: [<c02cf622>] schedule+0x84e/0x87a
Feb 6 14:28:18 server kernel: [<c027734b>] sys_socketcall+0x1df/0x1fb
Feb 6 14:28:18 server kernel: [<c0125bc5>] sys_gettimeofday+0x53/0xac
Feb 6 14:28:18 server kernel: [<c02d137f>] syscall_call+0x7/0xb
Feb 6 14:28:18 server kernel: [<c02d007b>] _read_lock_irq+0x4/0x1e
VPS Incredibly Slow, Huge Numbers Of Slow MySQL Queries For Plesk/Watchdog
Nov 11, 2008I've got 25 domains on a Virtuozzo/Plesk8.6/CentOS5 VPS. Each domain has one up-to-date install of WordPress, most have very little traffic (average 200mb per month), maybe 2 domains get 5-7gb traffic per month.
I monitor port 80 connections and rarely see more than 10 at a time.
That should in my opinion be no problem at all for a VPS with 768mb guaranteed ram and 2.4ghz cpu. I've got 30gb hard drive spare too.
But.... about 8 or 10 times a day it grinds to a complete halt: server load at 500-1000%, sites timing out, plesk takes 3mins to load, often I can't even connect with SSH, and the plesk web server, apache
INSERT INTO module_watchdog_sys_stat (time, type, value, service_id) VALUES(FROM_UNIXTIME(1226404705), 'MAINMEM_USAGE', 17472, 11);
80 seconds sounds like a huge amount of time for a MySQL insert to me! Does anyone know if this is likely to be the cause of my trouble? Some problem with Plesk and the database? Or could it be something else?
/var/log/messages
Mar 30, 2007What does the #53 mean at the end of the following?
Code:
Mar 25 04:28:23 gamma named[9887]: lame server resolving 'xxxxx.com' (in 'xxxxx.com'?): 207.58.185.160#53
Where Are Email Messages
Oct 13, 2009I need to backup some emails from my VPS, Can you please tell me where my emails are stored, I have a VPS running CENTOS, PLESK and POSTFIX mail server.
View 1 Replies View RelatedMessages Logs
Aug 16, 2007My messages logs are full with the following:
Aug 16 05:45:08 sml101 sshd(pam_unix)[23100]: check pass; user unknown
Aug 16 05:45:08 sml101 sshd(pam_unix)[23100]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:13 sml101 sshd(pam_unix)[23119]: check pass; user unknown
Aug 16 05:45:15 sml101 sshd(pam_unix)[23119]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:18 sml101 sshd(pam_unix)[23161]: check pass; user unknown
Aug 16 05:45:18 sml101 sshd(pam_unix)[23161]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:21 sml101 sshd(pam_unix)[23178]: check pass; user unknown
Aug 16 05:45:21 sml101 sshd(pam_unix)[23178]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:24 sml101 sshd(pam_unix)[23187]: check pass; user unknown
Aug 16 05:45:24 sml101 sshd(pam_unix)[23187]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:27 sml101 sshd(pam_unix)[23235]: check pass; user unknown
Aug 16 05:45:27 sml101 sshd(pam_unix)[23235]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:29 sml101 sshd(pam_unix)[23249]: check pass; user unknown
Aug 16 05:45:29 sml101 sshd(pam_unix)[23249]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:32 sml101 sshd(pam_unix)[23262]: check pass; user unknown
Aug 16 05:45:32 sml101 sshd(pam_unix)[23262]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:35 sml101 sshd(pam_unix)[23283]: check pass; user unknown
Aug 16 05:45:35 sml101 sshd(pam_unix)[23283]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:38 sml101 sshd(pam_unix)[23307]: check pass; user unknown
Aug 16 05:45:38 sml101 sshd(pam_unix)[23307]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Aug 16 05:45:40 sml101 sshd(pam_unix)[23321]: check pass; user unknown
Aug 16 05:45:40 sml101 sshd(pam_unix)[23321]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.111.176.1$
Ata Error In Messages File
Jul 27, 2009Does anyone know what the following events in /var/log/messages mean. It looks like some sort of failure on the ata bus. Does the last line mean that it successfully wrote all data using the cache, or could there be data loss?
The output of smartctl looks ok for the disk.
Code:
Jul 26 16:44:35 server1 kernel: ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x2 frozen
Jul 26 16:44:35 server1 kernel: ata1.00: cmd c8/00:08:9d:e2:8a/00:00:00:00:00/ec tag 0 cdb 0x0 data 4096 in
Jul 26 16:44:35 server1 kernel: res 40/00:01:00:4f:c2/00:00:00:00:00/00 Emask 0x4 (timeout)
Jul 26 16:44:42 server1 kernel: ata1: port is slow to respond, please be patient (Status 0xd0)
Jul 26 16:45:05 server1 kernel: ata1: port failed to respond (30 secs, Status 0xd0)
Jul 26 16:45:05 server1 kernel: ata1: soft resetting port
Jul 26 16:45:10 server1 kernel: ata1.00: revalidation failed (errno=-2)
Jul 26 16:45:10 server1 kernel: ata1: failed to recover some devices, retrying in 5 secs
Jul 26 16:45:15 server1 kernel: ata1: soft resetting port
Jul 26 16:45:15 server1 kernel: ata1.00: configured for UDMA/133
Jul 26 16:45:15 server1 kernel: ata1: EH complete
Jul 26 16:45:15 server1 kernel: SCSI device sda: 976773168 512-byte hdwr sectors (500108 MB)
Jul 26 16:45:15 server1 kernel: SCSI device sda: drive cache: write back
LFD Messages Regarding High Load...
Jun 16, 2009I have a VPS with Future Hosting and recently I have been getting more and more notifications from LFD regarding high CPU load. For example:
Time: Sun Jun 14 06:50:48 2009 -0500
1 Min Load Avg: 9.47
5 Min Load Avg: 6.25
15 Min Load Avg: 3.68
Running/Total Processes: 2/105
I am getting at least one of these a day now and I am also getting alerts about services failing, SPAMD in particular but also EXIM (and messages about LFD being unable to determine the exim queue length). External monitors are also warning me about SMTP timeouts during the same time period that I get the "high load" errors.
Tech support seems a bit stumped by this one and ALWAYS come back with "load looks fine right now". With the frequency of the warning emails increasing I am getting very concerned about the stability of my VPS.
I am not running anything significant on my VPS yet with minimal visitors and load (RAM usage consistently stays below 300MB on a VPS with 1+GB RAM.
Named Message In Var/log/messages
Jun 30, 2007Few days back i began to have problem with server overload, when i checked in /var/log/messages i found a lot of
Jun 28 14:17:59 secure named[3523]: client 200.48.225.146#59035: error sending response: host unreachable
Jun 28 14:17:59 secure named[3523]: client 200.51.211.5#32774: error sending response: host unreachable
Jun 28 14:17:59 secure named[3523]: client 202.55.145.3#32637: error sending response: host unreachable
Jun 28 14:17:59 secure named[3523]: client 66.245.177.163#3936: error sending response: host unreachable
Jun 28 14:17:59 secure named[3523]: client 202.59.163.2#32768: error sending response: host unreachable
Jun 28 14:17:59 secure named[3523]: client 216.247.37.56#24990: error sending response: host unreachable
Jun 28 14:17:59 secure named[3523]: client 194.18.168.184#39718: error sending response: host unreachable
Jun 28 14:17:59 secure named[3523]: client 64.226.28.70#45706: error sending response: host unreachable
all at the same hour,minutes and seconds, this that i wrote is an example (the ip's are reals) but like it i found a lot of more, and is in the same time that the server overload. the server is RHE and i have APF and BFA installed.
Postfix Bounce Messages
Feb 6, 2008Where can I turn off the emails that go out in response to a message not being delivered?
View 2 Replies View RelatedRkhunter Error Messages
Dec 29, 2007I just ran 'rkhunter -c --quiet' and this is the error messages I got:
Line:
Warning: This operating system is not fully supported!
Line: Warning: This operating system is not fully supported!
Warning: Cannot find md5_not_known
Some errors has been found while checking. Please perform a manual check on this machine debian
Is this something I should be worried about??
I'm running CentOS 5.
MSN / Hotmail Blocking Messages
Feb 13, 2007It appears that MSN / Hotmail have recently began blocking an awful lot of servers I manage. Several of them (for a company I work for) are in a few blacklists however a number of the IP addresses I manage are 100% clean.
Anyone know of something MSN/Hotmail recently began enforcing?
The blocks began at around 6 PM EST on Thursday of last week.
The error message is as follows:
Your e-mail was rejected for policy reasons on this
gateway. Reasons for rejection may be related to content such as obscene
language, graphics, or spam-like characteristics (or) other reputation
problems. For sender troubleshooting information, please go to
http://postmaster.msn.com. Please note: if you are an end-user please
contact your E-mail/Internet Service Provider for assistance.
I feel like a pawn for asking this on WHT but from what I can see
it's fairly widespread.
The domains in question do have basic SPF implemented as well.
not limited to a contact at hotmail / msn that would enjoy a phonebeating.
[smtp] 421 Too Many Messages In This Connection
Jul 10, 2007we send mailing tih php through smtp connection
All ok in the last 5 month
But now when set more than 1000 emails x sessione (any 10 minutes) we get this error:
"421 too many messages in this connection"
There aren't new configuration on exim.
So we have set 1000 emails max and lower minutes in the session (5) but there is another problem:
Warning: fsockopen() [function.fsockopen]: unable to connect to mx.***.com:25 in /home/***.php on line 47
Connection refused (111)
Can be too lower 5 minutes?
Filter Outgoing Messages
Apr 1, 2007I am on a DirectAdmin server, with root access. Exim mail server.
Is there any way to filter outgoing messages? Let's say if IP of client is listed in blacklist, they can not send out emails
How To Hide Server Messages
Nov 18, 2007messages such as
Apache/2.2.6 (Unix) mod_ssl/2.2.6 OpenSSL/0.9.7a FrontPage/5.0.2.2635 mod_bwlimited/1.4 mod_jk/1.2.25 mod_mono/1.2.4 mod_auth_passthrough/2.1 PHP/5.2.4
when you go to browse a folder with no index file..
is there away to remove this?
Pure-ftpd In /var/log/messages
Sep 14, 2007/var/log/messages is full of messages like this every 5 minutes:
[INFO] New connection from 209.85.4.32
pure-ftpd: (?@209.85.4.32) [INFO] Logout
is there any way to stop it?
Strange Stuff In /var/log/messages
Feb 19, 2007Quote:
Feb 19 15:57:39 server proftpd[1363]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 16:06:02 server proftpd[1982]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 16:06:02 server proftpd[1982]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 16:14:24 server proftpd[2471]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 16:14:24 server proftpd[2471]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 16:22:46 server proftpd[3062]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 16:22:46 server proftpd[3062]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 16:31:09 server proftpd[3696]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 16:31:09 server proftpd[3696]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 16:39:31 server proftpd[4185]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 16:39:31 server proftpd[4185]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 16:47:53 server proftpd[4946]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 16:47:53 server proftpd[4946]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 16:56:16 server proftpd[5495]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 16:56:16 server proftpd[5495]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 17:04:38 server proftpd[6206]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 17:04:38 server proftpd[6206]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 17:13:00 server proftpd[6661]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 17:13:00 server proftpd[6661]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Feb 19 17:21:23 server proftpd[7225]: server.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Feb 19 17:21:23 server proftpd[7225]: server.com (127.0.0.1[127.0.0.1]) - FTP session closed.
I see over a few hundred of these lines in /var/log/messages. The timestamp is exactly the same for every 2 lines (Proftp session- Opened and Closed). It's occuring every hour of the day. Is someone attacking the ftp daemon or something?
Exim Failed Messages
Nov 15, 2007We're on a VPS and lately we've been getting a few 'exim has failed...A restart was attempted automagicly.' messages. Support indicated that we're hitting our limits and suggested that we move to a bigger package or remove accounts. I only have 2 active sites on this account. We're new at this and don't know if there's anything else we can do.
Does anyone know what could be causing exim to fail?
Apache :: Startup Messages Do Not Appear
Jan 25, 2014I have 2.4.3 (Win-64) installed and running. When it starts up, I get a command prompt window that has messages in it, but the window closes so quickly, I can't read the messages. They don't appear in the log. I have tried to manually start the server, but when I do, the messages do not appear!
How can I get that window to stay open or where can I see those messages?
I Can Not Receive Messages From The Server Pop3
Jan 27, 2008I can not download messages from the server via pop3 and browsed on outlook
View 2 Replies View RelatedStrange Kernel Messages In Shell
Feb 7, 2007I am getting these strange messages in the shell.
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: Call Trace:
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c01c2650> do_lookup+0x5a/0x78 <c01c2de3> __link_path_walk+0x775/0xbf0
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c019fa60> prep_new_page+0x2f/0x148 <c01c32a1> link_path_walk+0x43/0xae
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c01c69d7> vfs_readdir+0x5f/0x67 <c01c6e3d> sys_getdents64+0xb8/0xc3
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c0345252> _atomic_dec_and_lock+0x2a/0x44 <c01c36b5> do_path_lookup+0x1f6/0x241
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c01c3910> __user_walk_fd+0x29/0x3a <c01bedd8> sys_readlinkat+0x25/0x74
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c01c69d7> vfs_readdir+0x5f/0x67 <c01c6e3d> sys_getdents64+0xb8/0xc3
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c0345252> _atomic_dec_and_lock+0x2a/0x44 <c01bee3a> sys_readlink+0x13/0x17
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: <c01666ab> sysenter_past_esp+0x54/0x89
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: Code: 00 00 70 ee a0 d0 bc ee a0 d0 bc ed a0 d0 c4 ee a0 d0 c4 ed a0 d0 4c ee a0 d0 4c ee a0 d0 64 ba 8f d1 64 ba 8f d1 87 2f 39 34 30 <d1> 35 f6 00 0c 10 c2 00 00 00 00 00 00 00 00 36 31 38 00 65 6e
Message from syslogd@hostname at Thu Feb 8 02:08:10 2007 ...
hostname kernel: EIP: [<d0a0ee61>] 0xd0a0ee61 SS:ESP 0068:f320fe44
Is this any issues with the current kernel that i am running. Do I need to change the kernel version ( 2.6.17.6 )
Limit Outgoing Messages (QMail)
Nov 9, 2009We've got a dedicated server at our company that hosts several sites and email accounts. Today I noticed that in the mail queue (from Plesk) we have like 5 or 6 messages from the same customer with around 400 destination addresses for EACH one. This would be like 2000-3000 emails to be sent. It isn't spam as it's some kind of newsletter.
I don't really know how the QMail server handles this, but it's been 5 hours since some of those messages entered the queue, and they are still there, so it seems that is having some difficulty.
I don't pretend to limit the amount of emails an user can send per minute or per hour, but I would like to know if there is any way of managing the queue like, lets say, send 50 message per minute. As far as I know, the mail queue right now (by default) starts sending the messages as they come, which means it could send 1000 in a few seconds if it can handle it.
I don't even know if this would be better or worse, meaning that maybe messages could get queued when the server could handle them, so some customers would see that emails are not working instantly as they do now. It also would be good if this tool (if exists) could report the current status of the queue, saturation, etc...
We're a bit worried because a couple of days ago we had some kind of attack and our server started sending hundreds of emails with fake sender and the CPU went overloaded and the mail queue was too big.
Handling Incoming Email Messages
Nov 12, 2008i'm wanting my users to be able to upload pictures to their accounts via email by sending the picture to a central email address (pics@mysite.com, for example).
from there, i'd like to take that incoming email and parse it how i see fit. (matching the email address to the user account, inserting the subject as the photo title, etc...)
what's the best method of handling this?
Warning Messages From The Nobody Check Script
Apr 21, 2008I am getting the following warning messages from the nobody check script by Webhostgear [url]
Warning: Malicious Nobody Process Found
=========================================
Options: kill bad proc=1 logging lvl=1
SCAN SUMMARY
========================================
Clean Processes: 12
DETECTED Malicious Processes: 1
DETECTION DETAILS
========================================
DETECTION: Process 7752 with name perl and path /usr/bin/perl
Process ID: 7752 has been killed
Restuls for PID: 7752
total 0
dr-xr-xr-x 3 nobody nobody 0 Apr 21 12:35 .
dr-xr-xr-x 1856 root root 0 Apr 2 16:12 ..
-r-------- 1 nobody nobody 0 Apr 21 13:00 auxv
-r--r--r-- 1 nobody nobody 0 Apr 21 12:35 cmdline
lrwxrwxrwx 1 nobody nobody 0 Apr 21 13:00 cwd -> /
-r-------- 1 nobody nobody 0 Apr 21 13:00 environ
lrwxrwxrwx 1 nobody nobody 0 Apr 21 12:35 exe -> /usr/bin/perl
dr-x------ 2 nobody nobody 0 Apr 21 12:36 fd
-r--r--r-- 1 nobody nobody 0 Apr 21 13:00 maps
-rw------- 1 nobody nobody 0 Apr 21 13:00 mem
-r--r--r-- 1 nobody nobody 0 Apr 21 13:00 mounts
-r-------- 1 nobody nobody 0 Apr 21 13:00 mountstats
lrwxrwxrwx 1 nobody nobody 0 Apr 21 13:00 root -> /
-r-------- 1 nobody nobody 0 Apr 21 13:00 smaps
-r--r--r-- 1 nobody nobody 0 Apr 21 12:35 stat
-r--r--r-- 1 nobody nobody 0 Apr 21 12:35 statm
-r--r--r-- 1 nobody nobody 0 Apr 21 12:35 status
dr-xr-xr-x 3 nobody nobody 0 Apr 21 13:00 task
-r--r--r-- 1 nobody nobody 0 Apr 21 13:00 wchan
Netstat:
Environ:
Server Admin action is required immediately.
In Messages Log :: Currently Unreadable (pending) Sectors
Jun 13, 2008I found these lines in my messages log:
Jun 13 16:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 16:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
Jun 13 16:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 16:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
Jun 13 17:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 17:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
Jun 13 17:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 17:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
Jun 13 18:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 18:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
Jun 13 18:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 18:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
Jun 13 19:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 19:04:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
Jun 13 19:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Currently unreadable (pending) sectors
Jun 13 19:34:43 vilabr smartd[2564]: Device: /dev/sda, 5 Offline uncorrectable sectors
What does it mean?
Hotmail Will Only Accept HTML Messages
Sep 16, 2007I have noticed that hotmail will only accept HTML message from any of my servers.
Is it me or is Hotmail really a webhosters night mare.
Hundreds Of Messages In Mail Queue
Mar 10, 2007I have hundreds and hundreds of messages in mail queue waiting delivering. Log file says:
connect to remote.host[000.000.000.000]: server refused to talk to me: 421 4.7.0 remote.host Error: too many connections from my-servers-ip
delivery temporarily suspended: connect to remote.host[000.000.000.000]: Connection timed out
(I replaced real IP addresses with 000, my-servers-ip and hostname with "remote host")
It happends only with one host (the most popular free email provider in my country). All emails to yahoo, gmail etc are being delivered without any problems.
What does it mean - too many connections from my server? I have a busy dating website and php script sends out a lot of email notifications (for example - when users get new instant messages). Anyway, I never heard that email providers limit the number of emails from the same server. During the night time all messages from mail queue are being delivered, but at day time this number sometimes grows to 1000.
I have Postfix installed.
