[Eisfair] antispam stoppt nach einiger Zeit
Rolf Bensch
azubi at bensch-net.de
Fr Okt 27 11:42:21 CEST 2023
Hallo Marcus,
Am 27.10.23 um 10:59 schrieb Marcus Röckrath:
> Hallo Rolf,
>
> Rolf Bensch wrote:
>
>>> Wer ist der Zombi?
>>
>> Keine Ahnung.
>>
>> mail (/) # ps aux | grep 'Z'
>> USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
>> root 28548 0.0 0.1 4560 2832 pts/0 S+ 10:36 0:00 /bin/sh
>> /bin/grep Z
>>
>> Auch andere Tests liefern keine Ausgabe. Top listet weiterhin "1 zombie".
>> Hast Du einen Vorschlag wie ich das ermitteln kann?
>
> Das ist der Zombi,
Sicher? Das sieht eher nach der Befehlszeile aus, die ich gerade ausgeführt habe.
> mal sehen, zu welchem Elternprozess er gehört:
>
> ps faux
Ziemlich viel output - s.u.
> Was sagt (nach Installation des zps-Paketes):
>
> zps -l
mail (/) # zps -l
PID PPID STATE NAME COMMAND
mail (/) #
Grüße
Rolf
mail (/) # ps faux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 2 0.0 0.0 0 0 ? S Oct22 0:00 [kthreadd]
root 3 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [rcu_gp]
root 4 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [rcu_par_gp]
root 5 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [slub_flushwq]
root 6 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [netns]
root 8 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [kworker/0:0H-events_highpri]
root 10 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [mm_percpu_wq]
root 11 0.0 0.0 0 0 ? S Oct22 0:00 \_ [rcu_tasks_trace]
root 12 0.0 0.0 0 0 ? S Oct22 0:30 \_ [ksoftirqd/0]
root 13 0.0 0.0 0 0 ? I Oct22 2:25 \_ [rcu_sched]
root 14 0.0 0.0 0 0 ? S Oct22 0:00 \_ [migration/0]
root 15 0.0 0.0 0 0 ? S Oct22 0:00 \_ [cpuhp/0]
root 16 0.0 0.0 0 0 ? S Oct22 0:00 \_ [cpuhp/1]
root 17 0.0 0.0 0 0 ? S Oct22 0:00 \_ [migration/1]
root 18 0.0 0.0 0 0 ? S Oct22 0:34 \_ [ksoftirqd/1]
root 20 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [kworker/1:0H-events_highpri]
root 21 0.0 0.0 0 0 ? S Oct22 0:00 \_ [kdevtmpfs]
root 22 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [inet_frag_wq]
root 24 0.0 0.0 0 0 ? S Oct22 0:00 \_ [oom_reaper]
root 25 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [writeback]
root 26 0.0 0.0 0 0 ? S Oct22 0:11 \_ [kcompactd0]
root 27 0.0 0.0 0 0 ? SN Oct22 0:00 \_ [ksmd]
root 44 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [kintegrityd]
root 45 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [kblockd]
root 46 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [blkcg_punt_bio]
root 47 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [md]
root 48 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [devfreq_wq]
root 49 0.0 0.0 0 0 ? S Oct22 0:00 \_ [watchdogd]
root 50 0.0 0.0 0 0 ? I< Oct22 0:03 \_ [kworker/0:1H-kblockd]
root 51 0.0 0.0 0 0 ? S Oct22 0:00 \_ [kswapd0]
root 53 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [kthrotld]
root 54 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/24-aerdrv]
root 55 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/25-aerdrv]
root 56 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/26-aerdrv]
root 57 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/27-aerdrv]
root 58 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/28-aerdrv]
root 59 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/29-aerdrv]
root 60 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/30-aerdrv]
root 61 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/31-aerdrv]
root 62 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/32-aerdrv]
root 63 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/33-aerdrv]
root 64 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/34-aerdrv]
root 65 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/35-aerdrv]
root 66 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/36-aerdrv]
root 67 0.0 0.0 0 0 ? S Oct22 0:00 \_ [irq/37-aerdrv]
root 68 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [acpi_thermal_pm]
root 70 0.0 0.0 0 0 ? S Oct22 0:00 \_ [hwrng]
root 71 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [raid5wq]
root 72 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [kstrp]
root 74 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [mld]
root 75 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [ipv6_addrconf]
root 99 0.0 0.0 0 0 ? I< Oct22 0:04 \_ [kworker/1:1H-kblockd]
root 252 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [ata_sff]
root 253 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [cryptd]
root 254 0.0 0.0 0 0 ? S Oct22 0:00 \_ [scsi_eh_0]
root 255 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [scsi_tmf_0]
root 265 0.0 0.0 0 0 ? S Oct22 0:00 \_ [scsi_eh_1]
root 271 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [scsi_tmf_1]
root 273 0.0 0.0 0 0 ? S Oct22 0:00 \_ [scsi_eh_2]
root 274 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [scsi_tmf_2]
root 275 0.0 0.0 0 0 ? S Oct22 0:00 \_ [scsi_eh_3]
root 278 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [scsi_tmf_3]
root 280 0.0 0.0 0 0 ? S Oct22 0:00 \_ [scsi_eh_4]
root 281 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [scsi_tmf_4]
root 283 0.0 0.0 0 0 ? S Oct22 0:00 \_ [scsi_eh_5]
root 285 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [scsi_tmf_5]
root 308 0.0 0.0 0 0 ? S Oct22 0:12 \_ [jbd2/vda2-8]
root 309 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [ext4-rsv-conver]
root 406 0.0 0.0 0 0 ? S Oct22 0:00 \_ [jbd2/vda1-8]
root 407 0.0 0.0 0 0 ? I< Oct22 0:00 \_ [ext4-rsv-conver]
root 10363 0.0 0.0 0 0 ? I 10:52 0:00 \_ [kworker/1:2-events]
root 29834 0.0 0.0 0 0 ? I 11:09 0:00 \_ [kworker/0:0-events]
root 27234 0.0 0.0 0 0 ? I 11:19 0:00 \_ [kworker/u4:1-events_unbound]
root 1247 0.0 0.0 0 0 ? I 11:21 0:00 \_ [kworker/1:3-cgroup_destroy]
root 7269 0.0 0.0 0 0 ? I 11:22 0:00 \_ [kworker/0:3-events]
root 24361 0.0 0.0 0 0 ? I 11:28 0:00 \_ [kworker/u4:2-events_unbound]
root 3487 0.0 0.0 0 0 ? I 11:31 0:00 \_ [kworker/0:1-cgroup_destroy]
root 3508 0.0 0.0 0 0 ? I 11:31 0:00 \_ [kworker/0:2-events_power_efficient]
root 4072 0.0 0.0 0 0 ? I 11:32 0:00 \_ [kworker/1:0-mm_percpu_wq]
root 9315 0.0 0.0 0 0 ? I 11:33 0:00 \_ [kworker/u4:0-ext4-rsv-conversion]
root 1 0.0 0.6 102272 12196 ? Ss Oct22 0:34 /usr/lib/systemd/systemd --switched-root --system --deserialize=31
root 130 0.0 0.2 8448 5156 ? Ss Oct22 0:10 @usr/sbin/haveged -w 1024 -v -1 -F
root 339 0.0 1.9 139400 35640 ? Ss Oct22 0:12 /usr/lib/systemd/systemd-journald
root 354 0.0 0.4 29720 8244 ? Ss Oct22 0:00 /usr/lib/systemd/systemd-udevd
systemd+ 410 0.0 0.3 89960 7224 ? Ssl Oct22 0:02 /usr/lib/systemd/systemd-timesyncd
at 415 0.0 0.1 4004 2364 ? Ss Oct22 0:00 /usr/sbin/atd -f
message+ 416 0.0 0.2 8568 4628 ? Ss Oct22 0:20 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activ
root 417 0.0 0.1 4364 2864 ? Ss Oct22 0:02 /usr/sbin/fcron -f
root 421 0.0 0.0 2700 1100 ? Ss Oct22 0:05 /usr/sbin/syslogd -F -m 20
root 425 0.0 0.4 17148 8032 ? Ss Oct22 0:11 /usr/lib/systemd/systemd-logind
root 428 0.0 0.0 3184 1232 tty1 Ss+ Oct22 0:00 /sbin/agetty -o -p -- \u --noclear - linux
root 433 0.0 0.4 14872 8688 ? Ss Oct22 0:00 sshd: /usr/sbin/sshd -D [listener] 0 of 10-10 startups
root 3538 0.0 0.5 17668 10536 ? Ss 11:32 0:00 \_ sshd: root at pts/0
root 3548 0.0 0.2 5796 4868 pts/0 Ss 11:32 0:00 \_ -bash
root 17921 200 0.1 7748 3332 pts/0 R+ 11:36 0:00 \_ ps faux
root 451 0.0 1.8 111220 34440 ? Ss Oct22 0:24 /usr/sbin/apache2 -k start
wwwrun 456 0.0 1.1 111916 21428 ? S Oct22 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 561 0.0 1.1 111900 22176 ? S Oct22 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 4070 0.0 1.2 111920 23156 ? S Oct22 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 4071 0.0 1.1 111904 21596 ? S Oct22 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 17079 0.0 1.1 111916 21760 ? S Oct23 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 5921 0.0 1.1 111888 21800 ? S Oct23 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 30207 0.0 1.1 111896 21628 ? S Oct26 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 9943 0.0 0.8 111512 16476 ? S 07:57 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 9944 0.0 1.1 111900 21228 ? S 07:57 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 14278 0.0 0.8 111512 16504 ? S 08:51 0:00 \_ /usr/sbin/apache2 -k start
wwwrun 453 0.0 0.0 6328 256 ? Ss Oct22 0:16 /usr/sbin/htcacheclean -d 120 -p /var/lib/apache/diskcache -l 300M -n
redis 666 0.1 0.2 130544 5204 ? Ssl Oct22 13:40 /usr/sbin/redis-server 127.0.0.1:6379
root 1165 0.0 0.0 2684 128 ? SNs Oct22 0:00 /usr/sbin/acpid
root 4720 0.0 0.5 18572 10420 ? Ss Oct22 0:02 /usr/lib/systemd/systemd --user
root 4725 0.0 0.1 21240 3132 ? S Oct22 0:00 \_ (sd-pam)
spam 17998 0.0 0.1 152632 2928 ? Ss Oct22 0:11 gpg-agent --homedir /var/antispam/spamassassin/sa-update-keys --use-standard-socket -
spam 11140 0.0 0.5 18584 10508 ? Ss Oct22 0:02 /usr/lib/systemd/systemd --user
spam 11169 0.0 0.1 21240 3220 ? S Oct22 0:00 \_ (sd-pam)
spam 11803 0.0 0.1 152632 2976 ? Ss Oct22 0:11 gpg-agent --homedir /var/antispam/spamassassin/sa-update-keys --use-standard-socket -
root 30743 0.0 8.0 229212 149144 ? Ss Oct24 0:03 /usr/bin/perl -T -w /usr/sbin/spamd -d -u spam -r /run/antispam/spamd.pid -H /home/sp
spam 30824 0.0 9.1 252632 170520 ? S Oct24 0:03 \_ spamd child
spam 30825 0.0 8.7 244008 162452 ? S Oct24 0:03 \_ spamd child
spam 30828 0.0 9.2 254000 172156 ? S Oct24 0:04 \_ spamd child
spam 30829 0.0 23.4 524160 434980 ? S Oct24 0:06 \_ spamd child
spam 30831 0.0 9.9 265436 183620 ? S Oct24 0:04 \_ spamd child
root 31456 0.0 0.1 4864 2988 ? S Oct24 0:13 /bin/sh /var/install/bin/antispam-control
root 17419 0.0 0.0 3152 1068 ? S 11:36 0:00 \_ sleep 20
root 1684 0.8 0.4 9956 8748 ? S 00:01 5:36 /bin/bash /brute_force_blocking/brute_force_blocking
root 17920 0.0 0.0 3152 1044 ? S 11:36 0:00 \_ sleep 10
exim 9577 0.0 0.4 14772 7712 ? Ss 00:01 0:00 /usr/sbin/exim -bd -q30m -om -oP /run/exim.pid
root 10008 0.0 0.1 5512 3160 ? S 00:01 0:00 /bin/sh /usr/bin/fetchmail-loader start
root 3528 0.0 0.0 3152 1048 ? S 11:31 0:00 \_ sleep 600
root 10552 0.0 0.1 6888 2920 ? Ss 00:01 0:00 /usr/sbin/dovecot -c /etc/dovecot/dovecot.conf
dovecot 10565 0.0 0.0 6576 1572 ? S 00:01 0:00 \_ dovecot/anvil
root 10566 0.0 0.1 6712 3052 ? S 00:01 0:00 \_ dovecot/log
root 10569 0.0 0.2 15080 4676 ? S 00:01 0:00 \_ dovecot/config
dovecot 16391 0.0 0.1 7680 3424 ? S 00:03 0:00 \_ dovecot/stats
dovenull 25377 0.0 0.3 15296 6880 ? S 11:28 0:00 \_ dovecot/imap-login
rolf 25379 0.0 0.2 12712 4652 ? S 11:28 0:00 \_ dovecot/imap
dovenull 25381 0.0 0.3 15296 6900 ? S 11:28 0:00 \_ dovecot/imap-login
rolf 25382 0.0 0.2 12904 4660 ? S 11:28 0:00 \_ dovecot/imap
Mehr Informationen über die Mailingliste Eisfair