From: "Massimo S." <ecs-isp@2rosenthals.com>
Reply-To: ml@ecomstation.it
Subject: Re: [eCS-ISP] Bind 9.11.37 issue - ticket #784 - update
To: eCS ISP Mailing List <ecs-isp@2rosenthals.com>
References: <list-9676907@2rosenthals.com> <list-9681559@2rosenthals.com>
 <list-9691955@2rosenthals.com>
Organization: eComStation dot it
Message-ID: <ddaf20ab-3960-31ab-7441-e4b78177abeb@ecomstation.it>
Date: Tue, 21 May 2024 19:28:11 +0200
User-Agent: Mozilla/5.0 (OS/2; U; Warp 4.5; it-IT; rv:1.7.13) Gecko/20060424
 Thunderbird/1.0.8 Mnenhy/0.7.4.0
MIME-Version: 1.0
In-Reply-To: <list-9691955@2rosenthals.com>
Content-Type: text/plain; charset=windows-1252; format=flowed
Content-Language: it-IT
Content-Transfer-Encoding: 8bit

bind already showed the issue (2 times today) in a few hours

massimo


Il 21/05/2024 13:42, Massimo S. ha scritto:
> hi all,
> 
> with keepalive at 30 sec. there are no improvements
> and named today showed again the issue
> 
> massimo
> 
> Il 20/05/2024 01:20, Peter Moylan ha scritto:
>> On 17/05/24 15:04, Steven Levine wrote:
>>> In <list-9676816@2rosenthals.com>, on 05/17/24 at 10:02 AM, "Peter
>>> Moylan" <ecs-isp@2rosenthals.com> said:
>>>
>>> Hi Peter,
>>>
>>>> I just used a text editor to modify inetcfg.ini. (It's a plain
>>>> text file, not an INI file.) Is there anything wrong with doing it
>>>> that way?
>>>
>>> Editing by hand is OK, as long as you don't make a typo.  The file
>>> format is typical unix style tab separated fields.
>>>
>>> You will need to
>>>
>>> inetcfg -s all
>>>
>>> to activate your changes.  When you reboot this is done by code in
>>> \tcpip\bin\b4tcp.cmd.
>>
>> Thanks. I did that last command just now. I had intended to wait for the
>> reboot, but I didn't get a "server hang" until today. (Couldn't fetch
>> mail, but luckily I could contact VNC server.) When I did a "netstat -s"
>> I found a large number of sockets in a CLOSE_WAIT condition, mostly on
>> port 22. Then I looked at SFTPServer (which uses port 22), and saw that
>> it was stuck in a "too many users" condition.
>>
>> So the problem was with SFTPServer, not with Weasel and not with bind.
>> Not too surprising, since I already knew that I was getting lots of
>> attacks on SFTPServer, obviously people trying to break in to SSH.
>>
>> When I killed and restarted SFTPServer, the mail started flowing again.
>>
> 
> =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
> This message is sent to you because you are subscribed to
>   the mailing list <ecs-isp@2rosenthals.com>.
> To unsubscribe, E-mail to: <ecs-isp-off@2rosenthals.com>
> To switch to the DIGEST mode, E-mail to <ecs-isp-digest@2rosenthals.com>
> To switch to the INDEX mode, E-mail to <ecs-isp-index@2rosenthals.com>
> Send administrative queries to  <ecs-isp-request@2rosenthals.com>
> To subscribe (new addresses), E-mail to: <ecs-isp-on@2rosenthals.com> and reply to the confirmation email.
> Web archives are publicly available at: http://lists.2rosenthals.com
> 
> This list is hosted by Rosenthal & Rosenthal, LLC
> P.O. Box 281, Deer Park, NY 11729-0281. Non-
> electronic communications related to content
> contained in these messages should be directed
> to the above address. (CAN-SPAM Act of 2003)
> 
> =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
>