Anytime I've gotten these before, they were stored in:
/var/log/messages
Today (according to logwatch), I got a protection fault in "top".
But when I view /var/log/messages... nothing is there relating to a fault.
The only kernel message that appears is a martian source.
I also hadn't logged into ssh today, isn't "top" an ssh command.
I just installed Apache 2.4.4 and it seems to run fine overall. But in my error.log I get about 3 of these every hour or so.error.log:[Sat Jun 15 20:57:44.095961 2013] [core:notice] [pid 31400:tid 16384] AH00052: child pid 1971 exit signal Segmentation fault (11)
track down what causes this? What module? vhost?Otherwise the server seems to run fine. It's on Linux with PHP 5.3.26 and MySQL 5.1.
I've been trying to use mod_forensics – [url]-- which has helped on one server track down some one causing the segmentation fault due to trying to abuse FrontPage shtml.dll, but on another server also suffering from regular segmentation faults, this tool has not helped.
What other tools are available to track down the cause(s) of Apache segmentation faults?
Sometimes my apache gets hanged due to memory leak or persistence connection, then needs to be restarted manually, how can I make this process automatic, that is it get restarted whenever it got hanged or shutdown?
View 9 Replies View RelatedAnybody have good experiences with some software based Apache 2.2 ddos protection. Im trying to find something similar then mod_evasive.
It's just that evasive won't work with Apache 2.2. It actually works, but it does not do what it is supposed to do.
Have tryed many different configuration, but it just won't do it.
After Googling i found out that many have suffered same kind of experiences with mod_Evasive and Apache2.2
I guess it is not working cos we got Peruser there. http://www.telana.com/peruser.php
Means that there is many differend child processes and evasive don't share data between childs.
So suggest me something. This is coming on prodution server with hundreds of domains so it has to be stable, fast and rock solid.
I was wondering if there's a simple way to implement some kind of authencation bruteforce protection in apache for windows? Right now my authentication never stops asking if user inputs the wrong credentials, this makes me think i'm vounrable for bruteforce attacks which could eventually get through if given the time.
View 4 Replies View RelatedI'm trying to set up password protection on an Apache HTTP server, and it's not working.
First, the environment: Apache 2.4.4 installed with XAMPP Control Panel 3.2.1 under Windows 7 Professional.
http.config says "AllowOverride All."
The .htaccess file in the protected directory says:
Code:
htpasswd -c .htpasswd samples
htpasswd prompted me for the password twice, and I entered it twice. When it quit I had a file named .htpasswd in the subsidy directory. I typed it and its contents looked correct according to the examples I've seen.
Then I restarted Apache and tried to load a page from the directory. The browser simply prompted me for the username and password over and over.
The Apache error log says, "AH01617: user samples: authentication failure for "/subsidy/filename.html": Password Mismatch."
I deleted the .htpasswd file and ran htpasswd again, specifying a different (very simple) password. I also confirmed that caps lock was not on both before and after. I restarted the server, tried to load a page, and got the same problem.
Apache seems to think I'm entering the wrong password, but that seems impossible when I've just defined it myself -- and I've tried twice, intentionally choosing a very simple password the second time. If the message means what it says, the cause must be something very different from the obvious one.
On and off for a few weeks, I've been getting this showing up in logwatch. Virtually no usable information seems to be on the web about it either:
--------------------- Kernel Begin ------------------------
WARNING: Segmentation Faults in these executables
php-cgi : 3 Time(s)
WARNING: General Protection Faults in these executables
php-cgi : 4 Time(s)
---------------------- Kernel End -------------------------
Is there a way to use traffic shaping in Linux? Like limit traffic to certain port, set priorities etc. Like ex: I'd want to set FTP to use max of 1mbps, http max of 80mbps, and set total to 90mbps.
Also is there ways to setup dos protection within linux? What I'd basically want is if it detects a dos, it either turns off the server, or does some other action that would cut it off either until I take action or for a set amount of time. Think turning off would be only solution since if I just drop packets I'd still be paying for that traffic.
Basically I want to ensure that if I get a DoS I'm not stuck paying insane bandwidth overcharges. I rather have a few days of downtime to deal with, then a few thousand dollars to pay and me having to declare bankruptcy and sell property etc...
After I've upgraded Plesk 1.0.18 to latest version, I'm unable to set protection on directories. Plesk say it is set, but it is not. I can access protected directory without pop-up of login-details. Old protected directories work, but for new one added not working anymore. I also tried by conventional way adding .htaccess and .htpasswd files to the directory, but it does not apply either.
View 2 Replies View RelatedI have 5 Linux Plesk 12 servers, and I use Spamassassin, usually at a sensitivity of 2 or 3, I also use the following DNS
Blackhole lists: zen. spamhaus. org;b. barracudacentral.org;abuse.rfc-ignorant.org;cbl.abuseat.org;bl.spamcop.net;nomail.rhsbl.sorbs.net
But all of this seems to have minimal effect. I examine spam that comes through which looks very obviously like spam, but Spamassassin gives it a very low score, usually in the negative numbers.
Is SA just not as effective as I thought? Seems like if Gmail, etc can filter spam so effectively, then why can't SA? If there's something I'm not doing right, or what you all do to combat spam with Plesk 12.
I have some error when the new outgoing spam protection (limitation for outgoing mail) is enabled. Mail clients are unable to use SMTP for sending mails. "My mail client says: The message could not be sent. You are not allowed to use sendmail utility."
I don't undestand the blocking behaviour since the checkbox "Allow scripts and users to use Sendmail" is checked and no limit is exeeded.This is the relevant log part of maillog:
Code:
Jul 3 00:44:36 srv01 postfix/smtpd[3326]: C0E5182A20: client=46.128.x.x.dynamic.cablesurf.de[46.128.x.x], sasl_method=CRAM-MD5, sasl_username=info@domain.de
Jul 3 00:44:36 srv01 postfix/cleanup[3331]: C0E5182A20: message-id=<0A380CA8-AAE3-4FA8-BA7A-A3FDF7CD16E2@domain.de>
Jul 3 00:44:37 srv01 /usr/lib/plesk-9.0/psa-pc-remote[3280]: handlers_stderr: DATA REPLY:554:[B]5.7.0 The message could not be sent. You are not allowed to use sendmail utility.[/B] REJECT
Jul 3 00:44:37 srv01 /usr/lib/plesk-9.0/psa-pc-remote[3280]: REJECT during call 'limit-out' handler
Jul 3 00:44:37 srv01 postfix/cleanup[3331]: C0E5182A20: milter-reject: END-OF-MESSAGE from 46.128.213.43.dynamic.cablesurf.de[46.128.x.x]: 5.7.0 The message could not be sent. You are not allowed to use sendmail utility.; from=<info@domain.de> to=<mail@domain2.de> proto=ESMTP helo=<[192.168.1.20]>
Jul 3 00:44:37 srv01 postfix/smtpd[3326]: disconnect from 46.128.x.x.dynamic.cablesurf.de[46.128.x.x]
Moreover I disabled the line "non_smtpd_milters" in postfix main.conf since my server has same issues discribed in the following thread:
Postfix: mails sent through sendmail binary are blocked because of wrong HELO
Is there a command to turn on antivirus for all mailboxes without having to enter each mailbox and update manually. I have over 800 mailboxes which need updating,
View 6 Replies View RelatedI have configured the DNS zones for DNSBL service as follows;
"zen.spamhaus.org;b.barracudacentral.org;bl.spamcop.net"
but I continue to to get spam from ip adressess that are confirmed as blacklisted at the above zones by testing them at [URL] ...
Is there something that I have missed in the config.
Today when I visited my plesk-stat folder, I saw that it is publicly available. Everyone can see the stats.
https://example.com/plesk-stat/
Is not this folder supposed to be protected by password as default?
When this option is enabled on the Mail Server Settings page, the page loads with the bottom of the page in focus and not the top.
View 1 Replies View RelatedI've been searching around with google regarding how to downgrade the Apache 2.2 which comes with CentOS 5 to Apache 1.3.39.
View 2 Replies View RelatedI am trying to install Magento on my apache server. I am running into the dreaded mcrypt issue as Magento needs it to run. I have now been googling for the past few hours and have gotten nowhere.
Here are my details:
Linux
Centos 5.5
PHP 5.3.3
x86_64
Plesk 12
I have tried installing all sorts of different repos and it just isn't working.
When I try to install using # yum install php-mcrypt I get the following:
Loaded plugins: fastestmirror
Package php-mysql is obsoleted by php-mysqlnd, trying to install php-mysqlnd-5.5.13-3.el5.remi.x86_64 instead
--> Processing Dependency: php53-gd for package: psa-php53-configurator
--> Processing Dependency: php53-imap for package: psa-php53-configurator
[Code].....
i installed httpd from yum and all ok.When i check my site via acunetix vulnerability scanner says Apache version older than 2.2.8.So it is vulnerable.
I must upgrade httpd to newer version but i cant.
Yum update says that httpd 2.2.3 is latest but ITS NOT.
I want to install following S/W on CentOS --->
a. Apache 2.2.9 with SSL
b. JBoss 4.2.3
c. JDK 5.0 update 16
d. Postgres 8.2.10
Are they work properly on the CentOS server?
I have a situation like this:
There is a directory say, "Master" and inside, "Master" there is sub-directory, "Slave". A user who has access to, "Master" should be able to access, "Slave" automatically. However, a user who has access to, "Slave" should not have access to, "Master". Inside cPanel this type of protection is not possible.
I'm using centos 5.2. To my surprise this only comes with php 5.1.6 and apache 2.0
I want the latest versions, php 5.2.7, apache 2.2.10, mysql 5.1 -- Are there any repositories for this available? (Or however I can upgrade with yum)
I am looking for some good ddos protection providers, via protected dns. I've searched on internet, but most of them are really expensive.
Please tell me some ddos protection providers what could help me.(gige is too expensive btw).
And I found some ddos protection scripts. How can a script protected a server from ddos? A sript like CSF or DDoS deflate?
I have centos -7 and apache 2.4.6. I have made one small php scripts and measuring the performance of server.
Average time is around 15 ms for per request. But when adding concurrent requests the average time increase too much high for the request see the below output
ab -n 10000 http://127.0.0.1/1.php
Connection Times (ms)
min mean[+/-sd] median max
Connect: 0 0 0.0 0 0
Processing: 14 17 2.6 15 35
Waiting: 0 1 0.2 1 10
Total: 14 17 2.6 15 35
With Concurrent connections
ab -n 1000 -c 100 http://127.0.0.1/1.php See the processing the mean request time its around 150 ms.
Connection Times (ms)
min mean[+/-sd] median max
Connect: 0 0 1.1 0 5
Processing: 25 150 24.7 153 213
Waiting: 2 134 25.2 138 194
Total: 29 150 24.1 153 216
ab -n 1000 -c 100 http://127.0.0.1/1.php See the processing the mean request time its around 150 ms when total request is 1000 only.
Connection Times (ms)
min mean[+/-sd] median max
Connect: 0 0 1.1 0 5
Processing: 25 150 24.7 153 213
Waiting: 2 134 25.2 138 194
Total: 29 150 24.1 153 216
How to configure the Apache so the request time decreas to low ms ???
In Centos -7 Default configuration of MPM Directory also not found ??? checked in httpd.conf and other file also.
I moved the home directory for apache from /usr/local/apache2/htdocs to /home/username/www
When I go to browse the site, I receive a 403 error, You do not have access to / on the server.
It gave the OK default page for apache before moving so I am assuming it is a permission issue.
What do I need to do? apache is running as the default "daemon" user and group.
I have one bare server and installed everything myself. however, I found apache, mysqld can not automatically start after reboot, may I know how to enable them to automatically start after reboot?
View 5 Replies View RelatedI've been seeing lots of the following error in my error_log recently, I've enabled core dumps and have managed to analyse one using gdb:
[Fri Nov 29 20:44:41.318847 2013] [core:notice] [pid 2307] AH00051: child pid 7504 exit signal Segmentation fault (11), possible coredump in /tmp/core-dump[Fri Nov 29 20:44:41.318937 2013] [core:notice] [pid 2307] AH00051: child pid 7623 exit signal Segmentation fault (11), possible coredump in /tmp/core-dump[Fri Nov 29 20:44:43.324859 2013] [core:notice] [pid 2307] AH00051: child pid 7724 exit signal Segmentation fault (11), possible coredump in /tmp/core-dump
OS CentOS 6.5
Panel version 11.5.30 Update #50
Tried migrating a site from a much older server. The migration never completed, so it was aborted and all the migration files deleted. Now, I'm getting the following error on the Plesk Home page:
=================
New configuration files for the Apache web server were not created due to the errors in configuration templates: httpd: Syntax error on line 221 of /etc/httpd/conf/httpd.conf: Syntax error on line 7 of /etc/httpd/conf.d/zz010_psa_httpd.conf: Syntax error on line 319 of /etc/httpd/conf/plesk.conf.d/roundcube.conf: Could not open configuration file /etc/httpd/conf/plesk.conf.d/webmails/roundcube/xxxxxxxxxxx.com_webmail.conf: No such file or directory . The error message containing the detailed error descriptions was sent to you by e-mail. Please resolve the issues and click here to generate broken configuration files once again or here to generate all configuration files.
=================
Clicking either of the 2 available options (links) does not resolve the issue. How to clear this error?
In Linux centOS 5 which more properly used and why (32 or 64bit)?
It is a machine for hosting.
Which one do you recommend for Linux OS server easy to use & stable?
( CentOS 3.x or 4.x , Fedora Core 4 or 5 )