There are quite a few customers affected by this outage, and it is being worked on by no less than 5 individuals.
This outage involves ONLY those customers placed on server 22.214.171.124, which includes several sub IP's.
Besides the major problems encountered with the cPanel 10.4 upgrade, (which was done automatically, and caused several static IP numbers to be removed from the server w/o warning, we had to re-add) one of our customers on that server is now being attacked by no less than 19,000 IP's.
There are several persons on this board that can vouch for this, as thankful as I am to the WHT community for allowing us to make friendships with engineers that have an idea or two above our own in this case.
19,000 IP's attacking this server, intermittently now for over 24 hours.
I am attaching the MRTG off the server.
If anyone has any ideas on how to help this situation feel free to PM or mail me.
Any and all customers affected will be credited for this outage.
By the way, I can add that if there are any customers with non-adult sites that would like to switch to another server please email [email protected] & we will migrate your account to another machine, as well as point the DNS such that you will be up immediately.
Regarding the problem with the update of cPanel did you contact them? what did they say? Our machines still using WHM 10.1.0 cPanel 10.2.0-R52 and i really don't want something like this to happen if an automatic update to 10.4 takes place.
I appreciate the problems you are having. One of my main sites has adult-related content so your offer isn't going to help me.
All sites are currently down. They have been up briefly now and again, but with things such as CSS not working.
This is the worst downtime I have had in over two years and, frankly, I am getting very worried now, because I don't know how long this attack could last.
I know you are going to refund what I have paid but that is nothing compared to what I will be losing once it gets to evening time USA. Not to mention people who may arrive at the site, see it isn't working and then never return, spiders etc.
I have a 130Mb main site and a 56k connection here. Trying to get it all back in place on the old server, then I have to hope DNS will transfer quickly.
Can I ask why you are only offering to move none-adult-related sites?
Originally posted by EuroVPS/Igor By the way, I can add that if there are any customers with non-adult sites that would like to switch to another server please email [email protected] & we will migrate your account to another machine, as well as point the DNS such that you will be up immediately.
Thanks. Worth saying in this thread that despite this hiccup the support from EuroVPS is usually fantastic. Sometimes it's a tiny bit slow getting the initial response from a TT even if people are already working on the situation, but other than that some of the best I've had, especially for the price.
Even with this situation the problem in the case of cpanel is hopefully a lesson learnt and in the case of the attack something very difficult to quickly resolve, which for those caught up in it is a risk with virtual accounts unfortunately. However, the response since has been the usual high standard and the requested server/domain move because of the attack very, very quick.
We usually keep clear of virtual hosting for a number of reasons but wanted a separate IP for a couple of small sites and so far have been very happy with any small hiccups getting solved quickly.
May have to look at a VPS too in the very near future.
One of the recent bug fixes altered a widely used function. On some systems, depending upon the Perl version, the fix may result in /scripts/convertemails hanging. This issue is fixed in all affected builds now, but there may be difficulty upgrading your current build. If you encounter this issue please do the following to remedy this issue:
rm -f /scripts/convertemails
A hung upcp run will hang immediately following this point:
root@domain [~]# /scripts/upcp
Found hostname to be XXX.XXXXXX.XXX, which resolves to X.X.X.X
Hostname Virtual Host is already setup
PHP version file is up to date
Ftp Quota Check v1.0
Doing a manual update...
Cpanel updates are coming from layer2.cpanel.net
findutils passes checksum
net-tools passes checksum
x - creating lock directory
x - SKIPPING /usr/local/lib/php.ini (file already exists)
If your upcp run proceeds past that point, then your system is not affected.