Results 1 to 10 of 10
  1. #1
    Join Date
    Jul 2004
    Posts
    873

    Angry SSL & Memory Leak

    hi
    after installing ssl on one of my heavy sites , now it eating memory in secons !

    8gb in 2 minutes !

    what is the problem ?

  2. #2
    Join Date
    Apr 2003
    Location
    NC
    Posts
    3,093
    What type of memory are you talkign about ram or drive space ( I am guessing drive) and where is this space going. SSL is not as efficient as normal http so you are goign to have some performance problems. There may be a memory leak but ssl is pretty stabel from what I have seen.

    *edit* version numbers would help for apache and mod_ssl to make sure you are at the latest.
    John W, CISSP, C|EH
    MS Information Security and Assurance
    ITEagleEye.com - Server Administration and Security
    Yawig.com - Managed VPS and Dedicated Servers with VIP Service

  3. #3
    Join Date
    Jul 2004
    Posts
    873
    it useing all of my RAM !
    they are last versions
    is there any way to set limit for ssl ?

  4. #4
    Join Date
    Apr 2003
    Location
    NC
    Posts
    3,093
    How many users at once are you talking about?
    John W, CISSP, C|EH
    MS Information Security and Assurance
    ITEagleEye.com - Server Administration and Security
    Yawig.com - Managed VPS and Dedicated Servers with VIP Service

  5. #5
    Join Date
    Nov 2004
    Location
    India
    Posts
    1,104
    Use the following command to find out which IP is having most of the connections to the 443 port [SSL],

    netstat -an | grep ESTABLISHED

    you can block them in your firewall. Also try the following command,

    netstat -an | grep SYN

    this command will give you the list of IPs which are sending SYN attacks to your server. Block the IP which is sending the SYN.
    AssistanZ - Beyond Boundaries...
    Cloudstack Consultancy / 24x7 Web Hosting Support / 24x7 Server Management / Infrastructure Management Services
    Web & Mobile Apps Development / Web Designing Services / Php, Grails, Java Development

  6. #6
    Join Date
    Feb 2003
    Location
    Potsdam, NY
    Posts
    648
    netstat -an | grep SYN

    this command will give you the list of IPs which are sending SYN attacks to your server. Block the IP which is sending the SYN.
    Errrhh... Not a good idea. SYN is not merely used for attacking servers.

  7. #7
    Join Date
    Jul 2004
    Posts
    873
    >eth00
    over 400+ online users

    any new idea ?

  8. #8
    Join Date
    Jul 2004
    Posts
    873
    >techlollu
    there is more than 100 ip when useing netstat -an | grep SYN


    how can i know how much used by ssl connections ?

  9. #9
    Join Date
    Nov 2004
    Location
    India
    Posts
    1,104
    You have to check for the port number 443 which is actaully used for SSL connections. for example,

    after executing the command,



    202.x.x.x:443 64.x.x.x

    Here 202.x.x.x will be your server IP and the 64.x.x.x will be the IP which is connecting to the 443 port. Check which IP has the most of connections.

    >>Errrhh... Not a good idea. SYN is not merely used for attacking servers.

    Yes but that command is helpful to find which user is sending more requests.
    AssistanZ - Beyond Boundaries...
    Cloudstack Consultancy / 24x7 Web Hosting Support / 24x7 Server Management / Infrastructure Management Services
    Web & Mobile Apps Development / Web Designing Services / Php, Grails, Java Development

  10. #10
    Join Date
    Jul 2004
    Posts
    873
    i wana know if a httpd procces used 10mb of ram with ssl it will use 15mb ? less/more ?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •