The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Httpd

Discussion in 'General Discussion' started by mbd5882, Feb 28, 2006.

  1. mbd5882

    mbd5882 Well-Known Member

    Joined:
    Apr 30, 2005
    Messages:
    60
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Manchester, United Kingdom
    cPanel Access Level:
    Root Administrator
    Hi,
    On a friends server, Something has killed httpd. It wont start without killing the server.
    Are there any logs in cpanel that log cpu usage and the user.
    We think its a user running a script, intensionally crashing httpd.
    Our service reports are below:

    Code:
    mysql (4.0.25-standard)	up	
    ftpd	up	
    httpd (1.3.34 (Unix))	failed	
    clamd	up	
    spamd	up	
    cpsrvd	up	
    eximstats	up	
    imap	up	
    syslogd	up	
    exim (exim-4.52-7_cpanel_smtpctl_av_rewrite_mm2_mmmtrap_exiscan_md5pass)	up	
    pop	up	
    named (9.2.3)	up	
    Server Load	89.67 (1 cpu)	
    Memory Used	20.3 %	
    Swap Used	0.00 %	
    Disk hda2 (/) DMA+	50 %	
    Disk hda1 (/boot) DMA+	7 %
    The server type is i686, running Fedora OS and the latest cpanel.
     
    #1 mbd5882, Feb 28, 2006
    Last edited: Feb 28, 2006
  2. mbd5882

    mbd5882 Well-Known Member

    Joined:
    Apr 30, 2005
    Messages:
    60
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Manchester, United Kingdom
    cPanel Access Level:
    Root Administrator
    anyone?
    this is urgent, we need to know who attacked our server and put it back online.
     
  3. bijo

    bijo Well-Known Member

    Joined:
    Aug 21, 2004
    Messages:
    475
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    India
    Hello,

    Check your apache logs, It will help you to find out the issue.
     
  4. webignition

    webignition Well-Known Member

    Joined:
    Jan 22, 2005
    Messages:
    1,880
    Likes Received:
    0
    Trophy Points:
    36
    Check also /var/log/messages for errors at the time httpd dies.

    What makes you think it is a user intentionally running a script to crash Apache? Not too long ago I had a user with a dodgy Mambo template that was killing Apache like a knife through butter, all completely unintentionally.
     
    #4 webignition, Mar 1, 2006
    Last edited: Mar 1, 2006
  5. mbd5882

    mbd5882 Well-Known Member

    Joined:
    Apr 30, 2005
    Messages:
    60
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Manchester, United Kingdom
    cPanel Access Level:
    Root Administrator
    Ok, Thanks.
    We found out it was a DOS attack.
     
  6. VirtuaLira

    VirtuaLira Well-Known Member

    Joined:
    Feb 1, 2004
    Messages:
    148
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Chile
    I have the same problem...

    How you fix it??
     
Loading...

Share This Page