Results 1 to 10 of 10
Thread: SSL & Memory Leak
-
05-31-2005, 08:43 AM #1Web Hosting Master
- Join Date
- Jul 2004
- Posts
- 873
SSL & Memory Leak
hi
after installing ssl on one of my heavy sites , now it eating memory in secons !
8gb in 2 minutes !
what is the problem ?
-
05-31-2005, 08:51 AM #2Web Hosting Master
- Join Date
- Apr 2003
- Location
- NC
- Posts
- 3,093
What type of memory are you talkign about ram or drive space ( I am guessing drive) and where is this space going. SSL is not as efficient as normal http so you are goign to have some performance problems. There may be a memory leak but ssl is pretty stabel from what I have seen.
*edit* version numbers would help for apache and mod_ssl to make sure you are at the latest.John W, CISSP, C|EH
MS Information Security and Assurance
ITEagleEye.com - Server Administration and Security
Yawig.com - Managed VPS and Dedicated Servers with VIP Service
-
05-31-2005, 08:58 AM #3Web Hosting Master
- Join Date
- Jul 2004
- Posts
- 873
it useing all of my RAM !
they are last versions
is there any way to set limit for ssl ?
-
05-31-2005, 09:02 AM #4Web Hosting Master
- Join Date
- Apr 2003
- Location
- NC
- Posts
- 3,093
How many users at once are you talking about?
John W, CISSP, C|EH
MS Information Security and Assurance
ITEagleEye.com - Server Administration and Security
Yawig.com - Managed VPS and Dedicated Servers with VIP Service
-
05-31-2005, 09:16 AM #5Web Hosting Master
- Join Date
- Nov 2004
- Location
- India
- Posts
- 1,104
Use the following command to find out which IP is having most of the connections to the 443 port [SSL],
netstat -an | grep ESTABLISHED
you can block them in your firewall. Also try the following command,
netstat -an | grep SYN
this command will give you the list of IPs which are sending SYN attacks to your server. Block the IP which is sending the SYN.AssistanZ - Beyond Boundaries...
Cloudstack Consultancy / 24x7 Web Hosting Support / 24x7 Server Management / Infrastructure Management Services
Web & Mobile Apps Development / Web Designing Services / Php, Grails, Java Development
-
05-31-2005, 11:48 AM #6Web Hosting Master
- Join Date
- Feb 2003
- Location
- Potsdam, NY
- Posts
- 648
netstat -an | grep SYN
this command will give you the list of IPs which are sending SYN attacks to your server. Block the IP which is sending the SYN.
-
05-31-2005, 03:55 PM #7Web Hosting Master
- Join Date
- Jul 2004
- Posts
- 873
>eth00
over 400+ online users
any new idea ?
-
06-01-2005, 01:16 AM #8Web Hosting Master
- Join Date
- Jul 2004
- Posts
- 873
>techlollu
there is more than 100 ip when useing netstat -an | grep SYN
how can i know how much used by ssl connections ?
-
06-01-2005, 02:29 AM #9Web Hosting Master
- Join Date
- Nov 2004
- Location
- India
- Posts
- 1,104
You have to check for the port number 443 which is actaully used for SSL connections. for example,
after executing the command,
202.x.x.x:443 64.x.x.x
Here 202.x.x.x will be your server IP and the 64.x.x.x will be the IP which is connecting to the 443 port. Check which IP has the most of connections.
>>Errrhh... Not a good idea. SYN is not merely used for attacking servers.
Yes but that command is helpful to find which user is sending more requests.AssistanZ - Beyond Boundaries...
Cloudstack Consultancy / 24x7 Web Hosting Support / 24x7 Server Management / Infrastructure Management Services
Web & Mobile Apps Development / Web Designing Services / Php, Grails, Java Development
-
06-01-2005, 08:42 AM #10Web Hosting Master
- Join Date
- Jul 2004
- Posts
- 873
i wana know if a httpd procces used 10mb of ram with ssl it will use 15mb ? less/more ?