Too many PIDs (httpd+mysqld) then mysqld hangs and server get slow

If a single site makes the whole server unstable it's the very time to re-configure all things on your server. Because you can't know what weakness would be discovered and when. I believe every server should be protected from weak and broken scripts. At least minimum protection should be done against HTTP flood and ability to monopolize all server's resources.
 
zEitEr said:
If a single site makes the whole server unstable it's the very time to re-configure all things on your server. Because you can't know what weakness would be discovered and when. I believe every server should be protected from weak and broken scripts. At least minimum protection should be done against HTTP flood and ability to monopolize all server's resources.
Click to expand...
Indeed, totally agree!

We have many things like mod_security2, mod_ruid2 etc to check everything and if needed block stuff. Also a good firewall (CSF/LFD) should be helpfull.
 
zEitEr said:
In case it is an attack, an attacker would get what he wants, as soon as domain would be switched off. Why should the TS help him?
Click to expand...
You make a good point. But still, you're running a business. You may not be able to afford to chase after a problem caused by a single website on a shared server. Our terms of service for shared webhosting allow us to turn off services for a single site affecting the entire server, because otherwise we lose lots of clients instead of just one.

For clients with either dedicated servers or VPS instances we can fix the problem at an hourly rate because only the client is affected.

The one exception being if there's a DOS attack costing us lots of bandwidth we'd have to pay for ourselves; in that case we must turn off the client unless they pay upfront to keep them up while tracing the problem.

There needs to be a business case, or we're not around next month, either to earn a living, or to support our clients not having problems.

We turn off only the minimum. For example, yesterday we found a client's email password had been hijacked and someone was sending email through our server by means of password authenticated SMTP. We changed the client's email password and notified them of the problem. We didn't charge for the time it took to find and clean up the problem, because it likely wasn't the client's fault, but our TOS allows us to, and will if it repeats.

Jeff
 
Thank you all for your replies , Im a beginner sorry I don't have enough experience , online friend told me to help and he disappeared so im stuck with a self-managed plan :P

Website language : Arabic

Main script : Wordpress , I don't have weak scripts. all famous ...

When I saw the Tags PIDs i thought the problem was from the Auto Tag Plugin in Wordpress I stopped it and it worked for couple of days <- i think a coincidence , and Now I got the problem back .. stopped all plugins , still same problem .....

I was busy they days before just came back from a Holiday :)

--------------

and I appreciate all your suggestions guys but I don't know how to do them.

-------------

btw im using SuPHP.

-------------

And no I cant drop the domain and site ;p i've been working on it since 2007 and it's getting better and better .. but now worse ofcourse !

Any suggestions ?
 
Btw from the PIDs on (server-status) i googled the IPs that are causing many PIDs (that -GET- tag thing)

it was a google bot
 
On server-status I see "C" which are closing PIDs right ? but they're not closing ... ?
 
You must log in or register to reply here.
Back
Top