cpsrvd error log: Possible denial of service?

SamSpade · Jun 9, 2019

Two weeks ago I re-installed my second DNSOnly nameserver. Both nameserver are clustered and are updated to the latest availabe CentOS and DNSOnly version. Since then CSF's daily log scanner report continues to show under /usr/local/cpanel/logs/error_log entries like this one

Code:

warn [cpsrvd] Previous check_sessions still running with pid: xxxxx.  Possible cpsrvd denial of service attack in progress. at cpsrvd.pl line 1141. cpanel::cpsrvd::script() called at cpsrvd.pl line 422

where the pid # varies.

The first nameserver was installed years ago running als the latest version of DNSOnly but without these errors.

I checked also for evidences of a denial of service attack. There were no suspicious activities.

Do you have any ideas what might be wrong?

Thanks
Sam

keat63 · Jun 10, 2019

I see this quite frequently.
I've never gotten to the bottom of it, but it doesn't seem to cause me any issues.

cPanelLauren · Jun 10, 2019

This indicates that for whatever reason the checks cpsrvd does are not completing in the alotted time frame.

Can you do to hard restart of cpsrvd and let me know if you continue to see the same errors?

Code:

/scripts/restartsrv_cpsrvd --restart --hard

Thread starter	Similar threads	Forum	Replies	Date
A	Internal server error 500 cpsrvd error	Operating Systems	1	Aug 15, 2019
	[cpsrvd] Internal Server Error: "-" 500 The cPanel Server operation timed out at cpsrvd.pl line 533.	Operating Systems	3	Jul 13, 2016
B	cpsrvd errors	Operating Systems	2	May 7, 2014
A	Deny Access to port 2086 - 2087: cpsrvd failed Error	Operating Systems	1	Oct 16, 2011
K	cpsrvd fails, server misconfiguration errors	Operating Systems	4	Jan 1, 2007

Search

Search

cpsrvd error log: Possible denial of service?

SamSpade

Member

keat63

Well-Known Member

cPanelLauren

Product Owner II