LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 12-08-2014, 04:01 AM   #1
rdx
Member
 
Registered: Apr 2007
Location: Dallas
Distribution: Slackware64 14.2
Posts: 283

Rep: Reputation: 25
browser sluggish, address resolution failing


Something weird is going on with my browsers, esp Opera but FireFox too. The first thing I noticed is slow response. Now it has gotten to a DNS failure. The really bad news is that I can avoid the problem by login into Windows; the problem is unique to Linux. I have cleared cookies, relogged, rebooted, and am running out of ideas. Except for the browsers, everything seems to be working well.

Slackware64 14.1 on HP i5-core machine, cable (no wifi) internet
 
Old 12-08-2014, 08:31 AM   #2
smallpond
Senior Member
 
Registered: Feb 2011
Location: Massachusetts, USA
Distribution: Fedora
Posts: 4,179

Rep: Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272
Check the output of "ifconfig -a" for TX packets being much higher than RX packets. I've seen some boxes get hacked by Chinese recently and used as part of a DDOS attack.
 
Old 12-08-2014, 03:10 PM   #3
rdx
Member
 
Registered: Apr 2007
Location: Dallas
Distribution: Slackware64 14.2
Posts: 283

Original Poster
Rep: Reputation: 25
Quote:
Originally Posted by smallpond View Post
Check the output of "ifconfig -a" for TX packets being much higher than RX packets. I've seen some boxes get hacked by Chinese recently and used as part of a DDOS attack.
Interesting. But what does one do about such things? And for that matter, what about viruses in general. There are lots of antivirus applications for Windows but I haven't noticed any for Linux.
 
Old 12-08-2014, 03:34 PM   #4
smallpond
Senior Member
 
Registered: Feb 2011
Location: Massachusetts, USA
Distribution: Fedora
Posts: 4,179

Rep: Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272Reputation: 1272
I've never seen a virus on Linux although I did get the Lion worm back in the day. Intrusions can happen due to not patching one of the many recent vulnerabilities and not having a good firewall setup.
 
Old 12-09-2014, 10:56 AM   #5
rdx
Member
 
Registered: Apr 2007
Location: Dallas
Distribution: Slackware64 14.2
Posts: 283

Original Poster
Rep: Reputation: 25
Quote:
Originally Posted by smallpond View Post
I've never seen a virus on Linux although I did get the Lion worm back in the day. Intrusions can happen due to not patching one of the many recent vulnerabilities and not having a good firewall setup.
That is both reassuring and ominous. I am a programmer, not an administrator and I have no idea what is vulnerable. I depend on a router to be my firewall. Mostly I depend on the fact that there is nothing to be gained by messing with my systems. I might have found something though. I discovered that ghostery wasn't blocking ALL the cookies, new ones have been slipped in on me. I just fixed that but it's too early to say whether that will help. But it is ridiculous waiting while the browser times out trying to reach a site that I know is there. It's as bad as trying to get customer support from the cable company.
 
Old 12-09-2014, 11:20 AM   #6
DavidMcCann
LQ Veteran
 
Registered: Jul 2006
Location: London
Distribution: PCLinuxOS, Salix
Posts: 6,158

Rep: Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318Reputation: 2318
If there's trouble with the DNS server, that's got to be your ISP, not you. I had a horrible day last month when I couldn't download the whole of some sites, could ping but not download others, and couldn't even ping a few. The phone line of the ISP told me that due to heavy demand, waiting time for an advisor would be around 20 minutes! I gave up and next day all was back to normal. Things happen
 
Old 12-14-2014, 03:45 AM   #7
rdx
Member
 
Registered: Apr 2007
Location: Dallas
Distribution: Slackware64 14.2
Posts: 283

Original Poster
Rep: Reputation: 25
I was talking to my son and he mentioned new features in HTML5 which use storage on the client machine. That makes me wonder if that's the problem, that management of those persistent storage records is bogging. I don't really know anything about it, he says it Javascript stuff.
 
Old 12-14-2014, 02:48 PM   #8
salasi
Senior Member
 
Registered: Jul 2007
Location: Directly above centre of the earth, UK
Distribution: SuSE, plus some hopping
Posts: 4,070

Rep: Reputation: 897Reputation: 897Reputation: 897Reputation: 897Reputation: 897Reputation: 897Reputation: 897
Quote:
Originally Posted by rdx View Post
It's as bad as trying to get customer support from the cable company.
Wow, that's pretty bad.

Quote:
Originally Posted by rdx View Post
I am a programmer, not an administrator and I have no idea what is vulnerable.
That's what - one of the things - a distro is for. Somewhere, there is a 'security team' (even if that's actually a person and its not his full time job). Security makes mitigated (against whatever vulns have been discovered) apps available and your job is to get them installed in a timely fashion.

If you don't do your job, things will go bad sooner or later. If they don't do their job, things will probably go wrong faster (in the every install of 'vulnerable distro' will be exploitable, and some person with evil intent will try to take advantage).

Quote:
Originally Posted by rdx View Post
I depend on a router to be my firewall.
Not really reliable. They do have problems from time to time and no one (relatively) installs patches... And they aren't the most configurable things in the world, in that even the ones that are based on a decent firewall are a bit 'dumbed down', to stop the UI putting the average user off.

Quote:
Originally Posted by rdx View Post
Mostly I depend on the fact that there is nothing to be gained by messing with my systems.
Of course, that's probably wrong. If someone wants to recruit a machine for a botnet, then you are probably are a better target than many. And, anyway, the bad guys don't know what's there until they break in, so, one of the things that is there is the information about what is there. And some people will just want to break in for the hell of it and to prove that they can. So, for them, there is a bit of an ego boost available.

Quote:
Originally Posted by rdx View Post
I might have found something though. I discovered that ghostery wasn't blocking ALL the cookies, new ones have been slipped in on me. I just fixed that but it's too early to say whether that will help.
I'd have to guess no, because I don't see cookies as being particularly fundamental to the problem.

Quote:
Originally Posted by rdx View Post
And for that matter, what about viruses in general. There are lots of antivirus applications for Windows but I haven't noticed any for Linux.
Well, there's ClamAV, but it is most use as a way of scanning files that might be passed on to windows boxes. But if you feel naked without some kind of AV application, then you might as well... Really, while there is malware for Linux, there aren't really viruses in the wild, so, to put it the other way, there is Linux malware (essentially) none of it is caught by an anti-virus app, because it isn't composed of viruses.

@smallpond
Quote:
Check the output of "ifconfig -a" for TX packets being much higher than RX packets. I've seen some boxes get hacked by Chinese recently and used as part of a DDOS attack.
An interesting idea, but it is a rather long shot.

@rdx
Quote:
The first thing I noticed is slow response. Now it has gotten to a DNS failure. The really bad news is that I can avoid the problem by login into Windows; the problem is unique to Linux.
AFAIK, windows ignores the rules on lookup expiration times, in order to speed things up, but has risks as well (this may not be true for recent versions of windows, I'm not sure). You might find that Chrome/Chromium do better, because it has a setting to pre-fetch DNS lookups, which could work here. Anyway, the first thing to do is to measure something; dig is your friend here.

Assuming that your DNS lookup time is poor, which seems like a good guess, then the next question is why. It might be overloading on your network, or it might just be that the DNS server that you are hooked up to is overloaded (...and that's quite often the case with the cheaper ISPs...apparently it is not the kind of thing that they see as a positive discriminator so often they can't run a nameserver to save their lives...).

It might then be a question of hooking up to a DNS server that works. Or you could run, eg, Dnsmasq to cache look-ups.
 
1 members found this post helpful.
Old 04-11-2015, 04:21 PM   #9
rdx
Member
 
Registered: Apr 2007
Location: Dallas
Distribution: Slackware64 14.2
Posts: 283

Original Poster
Rep: Reputation: 25
Ultimately the cure is to 1. kill plasma-desktop, 2. kill X, then restart a new X session (startx). It seems plasma-desktop and browsers get in a weird state where the browser hogs the CPU.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Host Name Resolution failing ToothlessRebel Linux - Networking 6 02-02-2007 02:29 PM
Browser Failing at HTTPS sites -- SOLVED cheerfulpickle LinuxQuestions.org Member Success Stories 2 03-30-2006 04:29 PM
X changed resolution while trying (and failing) to install an nVidia driver paulBottomley Fedora 1 10-26-2005 05:36 PM
KDE Browser Sluggish/XMMS Problems ou812 Linux - Software 1 04-05-2005 03:54 PM
Name resolution failing on linux, working on everything else TMH Linux - Networking 5 01-13-2005 06:46 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 01:35 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration