What is more concerning than your customers downloading email during the
normal course of events, is someone doing a dictionary attack against
your pop/imap server. Over the last few weeks, I have had my server
brought to its knees a few times. I am currently running the script
recently posted here to restart dovecot when the number of spawned
processes gets too high. It works, but it's ugly.
From what I can see, the bottleneck is not in dovecot, but im PAM or in
CODB. I started playing around and tried to login to the admin web page
using a normal user account. This failed. I then shutdown dovecot to get
the load and memory usage down. When it reached a reasonable level, I
tried to re-start codb. This failed. Not sure if it was a codb bug, or
just something still locked from pam etc.
Has anyone else started to dig into the code for the PAM module for
codb? I tried turning on debug log messages in syslog, but didnt get
very far.... Hints anyone?
Jes Kasper Klittum wrote:
> Marcelo Caparroz wrote:
>
>> Dovecot and qpopper go mad when there are many people downloading your
>> emails. If the CPU load is high, the problem is worse. But the basic
>> issue
>> here is the authentification process. Looks like the BQ canīt handle
>> many
>> pop3 connection.
>
> So are you saying it is the pam package that has a problem?
>
> Jes
>
>
>
>
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.