Hello,
For some reason my web site is being constantly flooded by requests
“GET //infe/getinfo.php HTTP/1.1” coming from one hundred client at
the same time.
Nginx 0.6.34 is running inside a Debian Etch OpenVZ container and
answering such DoS attack (?) with 403:
location ~* .php$ {
access_log off;
return 403;
}
The incoming rate is 200 req/s.
I have two worker processes: one seems to be doing almost nothing and
the other one is kept busy at 2% CPU all the time servicing “403”.
The problem is that this later process is allocation more and more
memory, in a linear fashion, until it gets recycled by Monit because
the box is in danger. The growing rate in terms of resident or virtual
memory is 8KB/s.
I have seen the worker using more than 50MB after a while, and only
servicing “403”.
I could not find any reference to a known memory leak problem in Nginx
so I am thinking about a side effect coming from OpenVZ.
Is anyone running Nginx happily inside an OpenVZ container ?
Regards,
Emmanuel