[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] SMTP Instability

Subject: Re: [cobalt-users] SMTP Instability
From: Ted Behling <TBehling@xxxxxxxxxxxxx>
Date: Wed Sep 26 13:17:18 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

At 02:49 PM 9/13/01, Joseph R. Brennskag wrote:

I was wondering if anyone has noticed some instability in SMTP or sendmail
recently.  I just recently applied all the patches to my Raq3i and now users
have been calling me to tell me that they are not able to send mail,
receiving mail is fine.  I have verified this and have shut down email
service through the GUI and then restarted it through the GUI and all is
well again.  Any ideas?

On the RaQ3, Sendmail is set to create no more than 12 childprocesses. Children are used for incoming and outgoing connections, andother tasks. To get around this arbitrarily-low limit, edit your/etc/sendmail.cf file and look for the following line:


        O MaxDaemonChildren=12

If you find it, I suggest you comment it out and and add or edit these lines:

        # load average at which we just queue messages
        O QueueLA=8

        # load average at which we refuse connections
        O RefuseLA=15

        # maximum number of new connections per second
        O ConnectionRateThrottle=10

These lines will configure Sendmail to limit the number of incomingconnections per second to 10 and queue messages or refuse connectionsentirely only when the system's load average (LA) is unusually high. Thisis useful to keep people from maliciously connecting to your Sendmaildaemon fast enough to cause a DoS. Cobalt's default MaxDaemonChildrensetting is designed to protect the server from DoSes, but ironically, itsets up a Sendmail DoS in so doing. By the way, O'Reilly's "bat book"explicitly says not to use the MaxDaemonChildren option in the Sendmailconfig file, and advocates using ConnectionRateThrottle in its place.


--------------------------------------------------------------------------
Ted Behling, Web Application Developer - Monarch Information Systems, Inc.

43 Folly Field Road, Unit 4, Hilton Head Island, SC 29928-5434
E-mail: mailto:TBehling@xxxxxxxxxxxxx
Phone/Fax: 1-800-842-7894    Local or Outside the USA: 1-843-842-7894
Cell Phone (urgent issues): 843-816-7895
Cell Phone E-mail: mailto:TedPhone@xxxxxxxxxxxxx (116 letter limit)
Web site: http://www.MonarchIS.net
--------------------------------------------------------------------------

References:
- [cobalt-users] SMTP Instability
  - From: Joseph R. Brennskag

Prev by Date: [cobalt-users] Blocking SPAM IP Ranges via GUI (RaQ3)?
Next by Date: Re: [cobalt-users] Blocking SPAM IP Ranges via GUI (RaQ3)?
Previous by thread: Re: [cobalt-users] SMTP Instability
Next by thread: [cobalt-users] SMTP Instability

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index