cpsrvd error log: Possible denial of service?

SamSpade

Member
May 18, 2013
7
0
1
cPanel Access Level
Root Administrator
Two weeks ago I re-installed my second DNSOnly nameserver. Both nameserver are clustered and are updated to the latest availabe CentOS and DNSOnly version. Since then CSF's daily log scanner report continues to show under /usr/local/cpanel/logs/error_log entries like this one

Code:
warn [cpsrvd] Previous check_sessions still running with pid: xxxxx.  Possible cpsrvd denial of service attack in progress. at cpsrvd.pl line 1141. cpanel::cpsrvd::script() called at cpsrvd.pl line 422
where the pid # varies.

The first nameserver was installed years ago running als the latest version of DNSOnly but without these errors.

I checked also for evidences of a denial of service attack. There were no suspicious activities.

Do you have any ideas what might be wrong?

Thanks
Sam
 

keat63

Well-Known Member
Nov 20, 2014
1,798
204
93
cPanel Access Level
Root Administrator
I see this quite frequently.
I've never gotten to the bottom of it, but it doesn't seem to cause me any issues.
 

cPanelLauren

Product Owner
Staff member
Nov 14, 2017
13,304
1,250
313
Houston
This indicates that for whatever reason the checks cpsrvd does are not completing in the alotted time frame.

Can you do to hard restart of cpsrvd and let me know if you continue to see the same errors?

Code:
/scripts/restartsrv_cpsrvd --restart --hard