My Centos 6.6 server has been running mostly great with minor issues until recently.
I put in transmission following a guys script which also put in CFS and LFD.
The problem is whenever its running its generating mass emails on the root email.
I removed the duplicates as there is many entries for each and loads of other processes being flagged as this was just a few seconds after starting CFS and LFD after clearing the logs.
Pretty much its set to flag most things.
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:09 0.80 kB lfd on server.revnet: Excessive resource usage: postfix (3021 (Parent PID:1590))
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 0.84 kB lfd on server.revnet: Excessive resource usage: mailman (1658 (Parent PID:1650))
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 0.79 kB lfd on server.revnet: Excessive resource usage: apache (16077 (Parent PID:1610))
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 0.85 kB lfd on server.revnet: Excessive resource usage: torrents (1233 (Parent PID:1233) ..
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 0.79 kB lfd on server.revnet: Excessive resource usage: drguild (17307 (Parent PID:16075 ..
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 0.80 kB lfd on server.revnet: Excessive resource usage: dovecot (1495 (Parent PID:1494))
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 0.95 kB lfd on server.revnet: Excessive resource usage: mysql (14855 (Parent PID:14720))
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 67.46 kB lfd on server.revnet: Suspicious process running under user apache
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 13.50 kB lfd on server.revnet: Suspicious process running under user mysql
root@110-175-205-112.static.tpgi.com.au 2015/06/25 17:04 23.55 kB lfd on server.revnet: Suspicious process running under user torrents
Not only am I getting spammed with errors when CFS/LFS is enabled my dns server is blocked and I cant use any named addresses inside my lan until I disable CFS/LFD meaning no webmin via the server name only IP works and everything else if the same.
The excessive resource was generating excessive memory but now its continuing excessive process time.
I'm not sure how to correctly configure this and reading around I see comments to leave CFS/LFD enabled as default fix up everything being flagged as these errors are showing issues on the system with resource blowouts. Surely that's not right being a webmin/virtualmin system and other systems?
Should I remove CFS and LFD and how would I do that?
Willing to give a trusted person access to take a look themselves.
Also my DNS server while works it seems spotty at times with local pc's connecting to it.
The way my network is setup is I have my router Asus DSL AC68U with its dns server set to my server for a secondary DNS and my local pc's set to auto IP and my router doing static ip's for some things.
This mostly works and is great on android but a few times the DNS from my PC cant be found unless I refresh the webpage 5-10 times in a row.
For now I just want to fix this CFS/LFD spam which since putting in the transmission script I've had a couple of kernel panics also, I have no idea what they are as I don't know if they are logged.
So can anyone help or recommend me a course of action here?
Then you should remove that script and check with authors what is wrong. This problems dont have anything to do with Virtualmin but your custom installed script so i think you will get better help on their website/forum.
- I often come to the conclusion that my brain has too many tabs open. -
Failing at desktop publishing & graphic design since 1994.
Reason why I posted especially in this general area was to see if anyone had advice so I could configure this to work with webmin etc and not generate all the errors as webmin also has a linux firewall section for CFS.
I was thinking about taking those components out but was wondering if their was a way get everything working together nicely as a install and setup even with other components is still all together.
Your reasoning is a little flawed in that if I was to see the author he would also say this script works fine for its purpose, if there are issues then its because you need to configure these components manually for all the web/virtualmin components, especially as CSF has a webmin module 'Linux Firewall" and you would need to see them on how to do that and would get better help there.
I did ask on another generic tech forum but no replies.
For now I removed CFS using the uninstall script
I found the webmin module in the install directory seems a bit complex for me to properly setup.
I also found there forum havn't looked at it, may do later.