The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

High Ram/CPU usage, unusual mail/messages logs

Discussion in 'E-mail Discussions' started by knipper, Jun 4, 2004.

  1. knipper

    knipper Well-Known Member

    Joined:
    Sep 4, 2001
    Messages:
    107
    Likes Received:
    0
    Trophy Points:
    316
    Hey all..

    On one of my older servers I noticed CPU usage going up, and very high RAM usage starting the end of May. For the last sveral days, these have been high.

    As I started digging I see named-unamed is generating most of the usage. I can literally watch the /var/log/messages file scroll by, with dozens of lame server messages every couple seconds.

    I thought A spammer was trying to use the system, made sure I didn't have an open relay, etc. and all seems OK.

    Mail logs don't show anything unusual.... but I see this in WHM mail delivery stats:

    Top 50 host destinations by message count
    -----------------------------------------

    10319 47MB local
    811 2957KB mail.customerdomain.com
    17 356KB mx01.mail.bellsouth.net
    11 225KB mx00.mail.bellsouth.net
    9 56KB mx2.hotmail.com

    Notice the local number.... awfully high.

    It appears I have a "dictionary" style spam attack on one of my domains as well. I am getting thousands of messages like

    al@mydomain.com
    albert@mydomain.com
    alfred@mydomain.com
    alma@mydomain.com
    almond@mydomain.com

    which are all getting sent to :blackhole:

    But I am not sure what to do to stop the high resource usage.... is it due to the "dictionary" attack?

    Or is someone trying to spam through my server?

    Or is this due to recursive lookups? etc.


    Can anyone point me the right direction to start?

    Thanks in advance.
     
    #1 knipper, Jun 4, 2004
  2. Cscarlet

    Cscarlet Active Member

    Joined:
    Jul 3, 2002
    Messages:
    31
    Likes Received:
    0
    Trophy Points:
    156
    I'm seeing something familiar just someone is sending an email about rolex's getting bounce backs but I can't seem to find any records that match within the exim logs
     
    #2 Cscarlet, Jun 6, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - High usage unusual
  1. nirbhay712

    High Memory usage on New VPS

    nirbhay712, Jun 25, 2017, in forum: General Discussion
    Replies:
    4
    Views:
    96
    cPanelMichael
    Jun 26, 2017
  2. Dan K

    fetch_vhost_ssl components high CPU usage

    Dan K, Jun 23, 2017, in forum: General Discussion
    Replies:
    2
    Views:
    72
    Dan K
    Jun 23, 2017
  3. Tibbers

    How to stop High CPU Usage

    Tibbers, Jun 7, 2017, in forum: General Discussion
    Replies:
    11
    Views:
    244
    cPanelMichael
    Jun 13, 2017
  4. GoWilkes

    High RAM usage

    GoWilkes, Apr 28, 2017, in forum: Workarounds and Optimization
    Replies:
    8
    Views:
    389
    Infopro
    Jun 17, 2017
  5. attiliok

    High memory usage caused by too many /usr/bin/php processes

    attiliok, Mar 11, 2017, in forum: Workarounds and Optimization
    Replies:
    8
    Views:
    721
    attiliok
    Mar 13, 2017

Share This Page