On Sun, 25 May 2008, Timo Sirainen wrote:
On Sun, 2008-05-25 at 05:08 +0300, Timo Sirainen wrote:
On Mon, 2008-05-19 at 12:06 -0400, Bryan Polk wrote:
On Fri, 16 May 2008, Evaggelos Balaskas wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
I hope something like this could help you :
# Authentication Cache auth_cache_size = 10240 auth_cache_ttl = 18000
This may have done the trick! The number of imap-login processes has been holding around 60 all morning.
So I guess most of the login processes were just waiting for authentication processes to respond? I hadn't thought about that. How many dovecot-auth processes do you have? Increasing auth_worker_max_count might be a good idea.
Or it should have actually logged an error in that case: "Couldn't create new auth worker".
Maybe it's the passwd lookups that are slow? What NSS backend are you using? It's probably a good idea to make them use auth workers also:
userdb passwd { args = blocking=yes }
Right now (which is very low usage) there's only one dovecot-auth process and I remember looking at this at the time and not being worried about the number of auth processes, or I probably would have changed the default from 30.. Also, I never saw anything in the logs. I turned on "auth_verbose = yes" but not auth_debug.
We're using a rather old NIS server at the moment, planning to move to LDAP this summer.
Dovecot has been running smoothly this week since I turned on the auth_cache stuff, at times going up around 110 imap-login processes but never going higher. It's always responsive which makes the users happy. Thanks again for the great product!