[EMAIL PROTECTED] wrote:
> Jun 23 00:00:04 host2 mimedefang[95658]: MIMEDefang-2.54: accept()
> returned invalid socket (Result too large), try again
This means that the accept() system call returned a file descriptor
that is larger than FD_SETSIZE. This means you have (for some reason)
lots and lots of milter threads active.
Do you have a lot of Sendmail processes running? We've seen DoS attacks
whereby attackers open up thousands of SMTP connections to a machine and
just sit there doing nothing. This causes lots of Sendmail processes and
Milter threads to hang around. Even though they don't consume CPU time,
they do consume memory and (in the case of the milters) file descriptors.
I recommend adding this to sendmail.mc:
define(`confTO_COMMAND',`5m')dnl
It causes Sendmail to close the connection and exit if the client sits
idle for five minutes.
Another option is to use the -C option with MIMEDefang. This causes
the milter not to hold file descriptors open between Milter
callbacks. (Of course, the milter socket itself is always
held open, but that's under control of the milter library.)
See the mimedefang(8) man page for details.
Regards,
David.
_______________________________________________
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list [email protected]
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
