check_sessions still running, possible dos attack...

A

alturic

Member
Jan 14, 2013
10
0
1
cPanel Access Level
Root Administrator
I got this today:

/usr/local/cpanel/logs/error_log:
Previous check_sessions still running with pid: 214337. Possible cpsrvd denial of service attack in progress.
Previous check_sessions still running with pid: 214337. Possible cpsrvd denial of service attack in progress.
Previous check_sessions still running with pid: 215687. Possible cpsrvd denial of service attack in progress.
Previous check_sessions still running with pid: 217078. Possible cpsrvd denial of service attack in progress.
Previous check_sessions still running with pid: 217078. Possible cpsrvd denial of service attack in progress.
Previous check_sessions still running with pid: 217078. Possible cpsrvd denial of service attack in progress.
repquota: Cannot open quotafile /disk1/quota.user: No such file or directory
repquota: Cannot open quotafile /disk1/quota.user: No such file or directory
Click to expand...
and was wondering if it's something I should worry about? I did do a service cpanel restart and got this:

Stopping cPanel log services: [FAILED]
Stopping cPanel Chat services: [FAILED]
Stopping InterChange services: [FAILED]
Stopping cPanel ssl services: Waiting for (?^:^(?:stunnel$|stunnel-[0-9\.]+local)) to shutdown ... not running.
[ OK ]
Stopping mailman services: Shutting down Mailman's master qrunner
mailmanctl: no process killed
[FAILED]
Starting cPanel services: Waiting for cpsrvd,cpsrvd-ssl,whostmgrd,cpaneld,webmaild to shutdown ... not running.
Starting cpsrvd.
[ OK ]
Starting cPanel brute force detector services: [ OK ]
Starting cPanel dav services: [ OK ]
Starting pop3 services: Waiting for (?^:^cppop(?:-ssl)?$) to shutdown ... not running.
[ OK ]
Starting cPanel Chat services:

Starting InterChange services: [ OK ]
Starting cPanel ssl services: Waiting for (?^:^(?:stunnel$|stunnel-[0-9\.]+local)) to shutdown ... not running.
[FAILED]
Click to expand...
Is either of those outputs "bad"?
 
A

alturic

Member
Jan 14, 2013
10
0
1
cPanel Access Level
Root Administrator
alturic said:
I got this today:



and was wondering if it's something I should worry about? I did do a service cpanel restart and got this:



Is either of those outputs "bad"?
Click to expand...
Anyone have any ideas about this? There's actually a TON of

Previous check_sessions still running with pid: 214337. Possible cpsrvd denial of service attack in progress.
Click to expand...
Most/all entries about that is different PIDs but I have no clue what could be causing it.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
N Anacron | Still issue accrue with other RPM Server Management 4
P All WP sites are loading very very slow - WHM and cPanel still loading Server Management 3
J WHM no longer responds to server hostname, ip address still works. Help! Server Management 7
B If I use a GIT editor like Sublime Merge does it still make sense to set up and use the GIT feature of cPanel or only if there's no other GIT tool? Server Management 1
A Suspended the cPanel Account but still websites are opening Server Management 4
Similar threads
Anacron | Still issue accrue with other RPM
All WP sites are loading very very slow - WHM and cPanel still loading
WHM no longer responds to server hostname, ip address still works. Help!
If I use a GIT editor like Sublime Merge does it still make sense to set up and use the GIT feature of cPanel or only if there's no other GIT tool?
Suspended the cPanel Account but still websites are opening
Top Bottom