maxclientscheck "servernmane" has exceeded the MaxClients

[wimp]

maxclientscheck "servernmane" has exceeded the Max

ok, i never seen such message befor.
Can anyone please tell me what this messages means and what is to do?
---------
IMPORTANT: Do not ignore this email.
&Apache has reached the MaxClients
&limit. cPanel has increased the MaxClients limit to 200 (10 higher).
&
&You may wish to suspend the user with the largest access log as they
&are generally the person using up all of the avalible connections. However,
&your should
&have your system admin verify this first.
&
&Top 3 Largest access logs
&====================================
&339564 /usr/local/apache/domlogs/domainname.com
&126480 /usr/local/apache/domlogs/domainname.com
&119336 /usr/local/apache/domlogs/domainname.com
------------------------

Think yep no problem i will go to clean domlog.... but.....
seems really there is no way to clean domlogs via SSH ...or, in other words cleaning it out , all data are still there... they are also there afhter restart the server....

This is not the firts time i clean domlogs... so nothing new .. but now... what is to do?

Can anyone tell me also how to clean definitly domlogs?


Thanks

 

[Website Rob]

Although I've never gotten that type of msg. it would seem that Cpanel has done some basic Administration for you.

As every Server has a default limit for maximum connections at one time, it would seem yours was reached. In order to allow more connections the &MaxClient& limit had to be increased -- else visitors to any site on the Server would receive an error msg. -- &Temporaily Overloaded& or something similar.

Not being aware of this feature, I am glad to hear it is there and results are sent, so a person knows what's going on.

 

[wimp]

yes i saw the limit in httpd.conf and increased it.

 

[Tom Pyles]

I have received this on occasion from several of our servers. Check your server logs for a 'mini' attack (for lack of a better word). We've seen these on several servers. Will probably look something like:

66.137.243.249 - - [20/Dec/2002:12:37:52 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:53 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:53 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:53 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:54 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:54 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:55 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:56 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:37:58 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:38:00 -0500] &-& 408 -
66.137.243.249 - - [20/Dec/2002:12:38:01 -0500] &-& 408 -

 

[wimp]

hi,yes i read about a worm attack (problems on Win. server but not on Linux) that could cause this messages.


http://www.webhostingtalk.com/showthread.php?s=facce525f74ef74bb3b7685c8e6e260d&postid=776662#post776662

 

[Juanra]

Or it could be related to this, which I don't think has anything to do with Windows:

http://groups.google.com/groups?th=7207e841e6419b92

There have been several interesting posts about this on these forums.