Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

High Ram/CPU usage, unusual mail/messages logs

Discussion in 'E-mail Discussion' started by knipper, Jun 4, 2004.

  1. knipper

    knipper Well-Known Member

    Joined:
    Sep 4, 2001
    Messages:
    107
    Likes Received:
    0
    Trophy Points:
    316
    Hey all..

    On one of my older servers I noticed CPU usage going up, and very high RAM usage starting the end of May. For the last sveral days, these have been high.

    As I started digging I see named-unamed is generating most of the usage. I can literally watch the /var/log/messages file scroll by, with dozens of lame server messages every couple seconds.

    I thought A spammer was trying to use the system, made sure I didn't have an open relay, etc. and all seems OK.

    Mail logs don't show anything unusual.... but I see this in WHM mail delivery stats:

    Top 50 host destinations by message count
    -----------------------------------------

    10319 47MB local
    811 2957KB mail.customerdomain.com
    17 356KB mx01.mail.bellsouth.net
    11 225KB mx00.mail.bellsouth.net
    9 56KB mx2.hotmail.com

    Notice the local number.... awfully high.

    It appears I have a "dictionary" style spam attack on one of my domains as well. I am getting thousands of messages like

    al@mydomain.com
    albert@mydomain.com
    alfred@mydomain.com
    alma@mydomain.com
    almond@mydomain.com

    which are all getting sent to :blackhole:

    But I am not sure what to do to stop the high resource usage.... is it due to the "dictionary" attack?

    Or is someone trying to spam through my server?

    Or is this due to recursive lookups? etc.


    Can anyone point me the right direction to start?

    Thanks in advance.
     
    #1 knipper, Jun 4, 2004
  2. Cscarlet

    Cscarlet Active Member

    Joined:
    Jul 3, 2002
    Messages:
    31
    Likes Received:
    0
    Trophy Points:
    156
    I'm seeing something familiar just someone is sending an email about rolex's getting bounce backs but I can't seem to find any records that match within the exim logs
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 Cscarlet, Jun 6, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - High usage unusual
  1. insationtech

    High usage in / Directory

    insationtech, Jan 1, 2019, in forum: Workarounds and Optimization
    Replies:
    2
    Views:
    115
    cPanelLauren
    Jan 4, 2019
  2. uk01

    High CPU Usage Issue

    uk01, Dec 15, 2018, in forum: General Discussion
    Replies:
    9
    Views:
    253
    uk01
    Dec 17, 2018
  3. OCS

    Auto Kill Processes with High CPU Usage

    OCS, Nov 17, 2018, in forum: General Discussion
    Replies:
    4
    Views:
    288
    cPanelLauren
    Nov 20, 2018
  4. Maning

    MYSQL high cpu usage issue

    Maning, Oct 13, 2018, in forum: Workarounds and Optimization
    Replies:
    1
    Views:
    537
    cPanelLauren
    Oct 19, 2018
  5. AdrianDamb

    High CPU usage with SpamAssassin?

    AdrianDamb, Oct 12, 2018, in forum: Workarounds and Optimization
    Replies:
    1
    Views:
    239
    cPanelLauren
    Oct 12, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice