MySQL keeps going down

Hey Guys,

I have had my current virtualmin installation (VM) for over an year now, and havent had any issues till about 2 months ago. I did the standard installation at the time, and didnt do anything too fancy.

The issue im having is, my MySQL db keeps going down every few weeks. couple of months ago, i had all my websites go down due to the DB going down (everything else works fine, its just mysql). I simply either have to restart the server/vm or just click the start button on the mysql service on the virtualmin admin panel. few weeks later, it happened again. And this morning it happened again. Few hours later, it happened once again (i just did the server restart to fix it).

Obviously, i have no idea how to find any logs or any way to figure out what is causing the issue. Can someone help?

Cheers.

We’ll need the relevant logs to make any kind of diagnosis. It depends on your OS and version as to where exactly those logs are.

/var/log/messages may have clues. I’d check the kernel log (dmesg) for out of memory errors…any time a service is stopping without an obvious cause, it’s about 50/50 odds it’s the OOM killer doing it, in my experience.

Sorry for a really late response,

I just noticed my sites were down again (mysql was down), so i just restarted it and decided to look at the logs /var/log/messages, and its flooded with with messages. so, i searched for “mysql” and here are some lines of code.

I changed one of the personal domain names above to cooldomain.co. the host name for the server is cece.cooldomain.co (if that makes any difference).

Can anyone help me figure out wtf is going on here? Why am i getting so many auth failure logs every couple of minutes? Whats with the whole out of memory thing that killed mysql? How do i get around that? The VPS has about 2GB memory, and there isnt anything hosted that would attract huge amount of traffic at all.

Oh wow, now im looking through some of the other logs /var/log/maillog for example (i dont use the server as a mail server at all, dont have any setup as far as im aware), and im getting massive amount of logs. i dont recognise any of the ip addresses that are being logged.

Should i be concerned?

Those are pretty normal; but, if you’re literally not using any mail features, you could turn off Postfix (and disable the mail features in Virtualmin so it won’t complain). That said, you probably do need a mail server for sending notification emails and the like.

There are a variety of options for stopping that kind of brute force attack (it’ll probably never succeed as long as you have strong passwords for any users that exist on the system). Fail2ban is a good option, and I’ve talked about it some recently in the forum here: https://www.virtualmin.com/node/52599

The relevant fail2ban rule is postfix-sasl.

alrighty, ill have a look at installing fail2ban. thanks for the info/suggestion.

As for the issue of mysql crashing, where is my earlier post where i actually posted the log that showed the mysql process being killed?

Alright, here we go again, so, as for /var/log/messages/ i saw the following when i found my mysql was down on the 25th (i had to manually start it again). the log looked like this:

Out of memory error. The OOM killer is killing MySQL. It could kill any process on the system, but it happened to get MySQL.

Free up some memory. It’ll stop happening. The OOM killer only kicks in if there is literally no memory left to allocate and it needs to free memory to keep the system up. You could allocate swap memory (and probably should), but this also definitely means you don’t have enough memory on the system for the number and configuration of services you have running. You need to reduce memory usage or increase real memory on the system.

There’s a guide for running Virtualmin on low memory systems, but it’ll apply to any system where you need to reduce memory usage. https://www.virtualmin.com/documentation/system/low-memory