Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SPAMd / EXIM fails frequently... Any solutions?

Discussion in 'General Discussion' started by ramcjbin, Jun 13, 2006.

  1. ramcjbin

    ramcjbin Member

    Joined:
    Mar 12, 2005
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    151
    Hi,

    100's of processes like the ones shown below causes SPAMd / EXIM to crash.

    1053 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1136 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1219 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1413 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1419 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1421 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1422 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1482 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1490 mailnull 0 0.0 0.2 /usr/sbin/exim -bd -q60m
    1541 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1542 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1592 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1593 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1597 mailnull 0 0.0 0.2 /usr/sbin/exim -bd -q60m
    1621 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1642 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1692 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1693 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m
    1697 mailnull 0 0.0 0.2 /usr/sbin/exim -bd -q60m
    1801 mailnull 0 0.0 0.1 /usr/sbin/exim -bd -q60m

    How to correct this problem?
     
    #1 ramcjbin, Jun 13, 2006
  2. AndyReed

    AndyReed Well-Known Member
    PartnerNOC

    Joined:
    May 29, 2004
    Messages:
    2,222
    Likes Received:
    4
    Trophy Points:
    193
    Location:
    Minneapolis, MN
    What's your Kernel version? You might have a script that loops indefinitely, or spammer using a script to deliver their spam. Did you check email traffic on your server? Does that cause server high load?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 AndyReed, Jun 13, 2006
  3. ramcjbin

    ramcjbin Member

    Joined:
    Mar 12, 2005
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    151
    My kernel version is 2.6.14.3.dn2.64

    MRTG shows mostly in single digit of received & send mails. Many times 1 to 5.

    I use chripy's dictionary attack in EXIM and even reduced the allowed failure from 3 to 2

    I see rejections in Exim logs.

    Server load is very low.

    Now installed PRM to intervene mailnull processes to keep control of it.

    Dictionary attacks are going on as usual as per mail log and that too has only 2 to 3 attack entries in a minute.

    Still lot of EXIM connections for very few mails.

    Any idea where to check further?
     
    #3 ramcjbin, Jun 13, 2006
(You must log in or sign up to post here.)
Loading...
Similar Threads - SPAMd EXIM fails
  1. Paul Shultz

    SOLVED spamd pyzor error: TERMINATED, signal 15 (000f)

    Paul Shultz, Jun 5, 2018, in forum: General Discussion
    Replies:
    8
    Views:
    119
    cPanelMichael
    Jun 12, 2018
  2. Tim@PPG

    Spamd Resource Usage

    Tim@PPG, May 23, 2018, in forum: E-mail Discussion
    Replies:
    1
    Views:
    90
    cPanelLauren
    May 23, 2018
  3. dcusimano

    lfd reporting excessive resource usage / suspicious process "spamd child"

    dcusimano, May 16, 2018, in forum: Security
    Replies:
    2
    Views:
    694
    cPanelLauren
    May 16, 2018
  4. MattKlis

    Spamd Failing

    MattKlis, Feb 23, 2018, in forum: E-mail Discussion
    Replies:
    1
    Views:
    253
    cPanelMichael
    Feb 26, 2018
  5. rangka_kacang

    spamd is failing

    rangka_kacang, Jan 31, 2018, in forum: General Discussion
    Replies:
    5
    Views:
    781
    cPanelMichael
    Feb 12, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice