[MaxClients]

[flashhosts]

IMPORTANT: Do not ignore this email.
Apache has reached the MaxClients
limit. cPanel has increased the MaxClients limit to 160 (10 higher).

You may wish to suspend the user with the largest access log as they
are generally the person using up all of the avalible connections. However, your should
have your system admin verify this first.



Never had this before, what does it mean, what should I do.

 

[knipper]

I just got this a few minutes ago as well. It included the accounts with the three largest logs.

Any input?

 

[mina]

I received the same email also- twice a day!
Each time several &client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23): /& errors were recorded.

Seems it is caused not because of top 3 user but because of some linux worm's attack...
Any protection against this?

 

[Jammer2020]

It is a worm because we have been getting this as of today on a box that is not even hosting any accounts yet..

 

[Juanra]

[quote:b59df4b995][i:b59df4b995]Originally posted by mina[/i:b59df4b995]
I received the same email also- twice a day!
Each time several &client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23): /& errors were recorded.
Seems it is caused not because of top 3 user but because of some linux worm's attack...
Any protection against this?[/quote:b59df4b995]

Same here - this is getting rather annoying, and increasing MaxClients not only does not solve the problem, but makes it worse the next time it happens.

We have Apache 1.3.27 and ServerTokens Prod set.

 

[netarus]

How do you prevent it?

 

[Annette]

nt

 

[itf]

This is not a worm that causes denial of service by reaching the Maximum clients in Apache, it is a kind of DoS attack usually by &Script Kiddies Attack& I wrote in another thread how to protect yourself,

thread: http://forums.cpanel.net/read.php?TID=5583

the post that I wrote how-to prevent from those attacks:
http://forums.cpanel.net/read.php?TID=5583&page=2#24310

 

[Annette]

nt

 

[haze]

Anyone know if this might be of help in this situation? http://hogwash.sourceforge.net/

 

[pingo]

Annette, why are you saying nt? I'm just curious, what does it mean?

John

 

[alwaysweb]

Originally posted by itf
This is not a worm that causes denial of service by reaching the Maximum clients in Apache, it is a kind of DoS attack usually by &Script Kiddies Attack& I wrote in another thread how to protect yourself,

thread: http://forums.cpanel.net/read.php?TID=5583

the post that I wrote how-to prevent from those attacks:
http://forums.cpanel.net/read.php?TID=5583&page=2#24310

ITF, might want to update your links -- Since cpanel forums went to vbulletin, your links are 404.