• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • Support for BIND DNS has been removed from Plesk for Windows due to security and maintenance risks.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS.

Question fail2ban-server and systemd-logind high cpu usage, log file auth.log 200Gb

B

bendim

New Pleskian
Server operating system version
Debian
Plesk version and microupdate number
18.0.48
Hello,
today i checked my grafana board and saw high cup usage and my 500Gb disk space was full.

htop shows fail2ban-server and systemd-logind 100% usage.
I searched for big files with the following command.
Bash: 
find / -type f -size +100M -exec du -h {} + 2>/dev/null | sort -r -h
259G    /var/log/auth.log
144G    /var/log/daemon.log
39G    /var/log/syslog.1
18G    /var/log/syslog

I stoped the fail2ban service temporarily to solve the problem.
Was my server hacked or is someone trying to hack it, or is it "only" a plesk problem.

Debian with Plesk Obsidian 18.0.48
 
Very similar to an attack on your server. I think it would be worth examining the fail2ban logs, for example, to get more details.
 
You must log in or register to reply here.

Similar threads

Endre
Issue Server Error 500 Plesk\Exception\Database DB query failed: SQLSTATE[HY000] [2002] No such file or directory
Replies
15
Views
10K
MihaiNecreala
M
V
High CPU usage for Fail2Ban
Replies
4
Views
3K
vincheesel
V
Back
Top