Grsec Kernel Either Panics Or Hang On Reboot

Mar 29, 2008

I installed latest kernel ( 2.6.24.4 or 2.6.24.3 ) with grsec which either panics or hang on reboot before reaching boot prompt, just when /sbin/init runs. Experienced the same with grsec patched kernel 2.6.22.9 on several servers with the same hardware.

On server with AMD Operton, I was able to successfully compile 2.6.24.4 with grsec and boot into.

Server hardware details
--------------------------

[root@server kernels]# cat /proc/cpuinfo
processor : 0
vendor_id : GenuineIntel
cpu family : 6
model : 15
model name : Intel(R) Xeon(R) CPU 5148 @ 2.33GHz
stepping : 6
cpu MHz : 2333.469
cache size : 4096 KB
physical id : 0
siblings : 2
core id : 0
cpu cores : 2
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 10
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc pni monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr dca lahf_lm
bogomips : 4670.51

processor : 1
vendor_id : GenuineIntel
cpu family : 6
model : 15
model name : Intel(R) Xeon(R) CPU 5148 @ 2.33GHz
stepping : 6
cpu MHz : 2333.469
cache size : 4096 KB
physical id : 0
siblings : 2
core id : 1
cpu cores : 2
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 10
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc pni monitor ds_cpl vmx est tm2 ssse3 cx16 xtpr dca lahf_lm
bogomips : 4667.16

[root@server kernels]#

[root@server ~]# uname -a
Linux server.name 2.6.19.2-grsec #1 SMP Tue Jan 15 07:08:50 CST 2008 i686 i686 i386 GNU/Linux
[root@server ~]#

[root@server kernels]# lspci
00:00.0 Host bridge: Intel Corporation 5000P Chipset Memory Controller Hub (rev b1)
00:02.0 PCI bridge: Intel Corporation 5000 Series Chipset PCI Express x8 Port 2-3 (rev b1)
00:04.0 PCI bridge: Intel Corporation 5000 Series Chipset PCI Express x8 Port 4-5 (rev b1)
00:06.0 PCI bridge: Intel Corporation 5000 Series Chipset PCI Express x8 Port 6-7 (rev b1)
00:08.0 System peripheral: Intel Corporation 5000 Series Chipset DMA Engine (rev b1)
00:10.0 Host bridge: Intel Corporation 5000 Series Chipset FSB Registers (rev b1)
00:10.1 Host bridge: Intel Corporation 5000 Series Chipset FSB Registers (rev b1)
00:10.2 Host bridge: Intel Corporation 5000 Series Chipset FSB Registers (rev b1)
00:11.0 Host bridge: Intel Corporation 5000 Series Chipset Reserved Registers (rev b1)
00:13.0 Host bridge: Intel Corporation 5000 Series Chipset Reserved Registers (rev b1)
00:15.0 Host bridge: Intel Corporation 5000 Series Chipset FBD Registers (rev b1)
00:16.0 Host bridge: Intel Corporation 5000 Series Chipset FBD Registers (rev b1)
00:1c.0 PCI bridge: Intel Corporation 631xESB/632xESB/3100 Chipset PCI Express Root Port 1 (rev 09)
00:1d.0 USB Controller: Intel Corporation 631xESB/632xESB/3100 Chipset UHCI USB Controller #1 (rev 09)
00:1d.1 USB Controller: Intel Corporation 631xESB/632xESB/3100 Chipset UHCI USB Controller #2 (rev 09)
00:1d.2 USB Controller: Intel Corporation 631xESB/632xESB/3100 Chipset UHCI USB Controller #3 (rev 09)
00:1d.3 USB Controller: Intel Corporation 631xESB/632xESB/3100 Chipset UHCI USB Controller #4 (rev 09)
00:1d.7 USB Controller: Intel Corporation 631xESB/632xESB/3100 Chipset EHCI USB2 Controller (rev 09)
00:1e.0 PCI bridge: Intel Corporation 82801 PCI Bridge (rev d9)
00:1f.0 ISA bridge: Intel Corporation 631xESB/632xESB/3100 Chipset LPC Interface Controller (rev 09)
00:1f.1 IDE interface: Intel Corporation 631xESB/632xESB IDE Controller (rev 09)
00:1f.2 IDE interface: Intel Corporation 631xESB/632xESB/3100 Chipset SATA IDE Controller (rev 09)
00:1f.3 SMBus: Intel Corporation 631xESB/632xESB/3100 Chipset SMBus Controller (rev 09)
01:00.0 PCI bridge: Intel Corporation 6311ESB/6321ESB PCI Express Upstream Port (rev 01)
01:00.3 PCI bridge: Intel Corporation 6311ESB/6321ESB PCI Express to PCI-X Bridge (rev 01)
02:00.0 PCI bridge: Intel Corporation 6311ESB/6321ESB PCI Express Downstream Port E1 (rev 01)
02:02.0 PCI bridge: Intel Corporation 6311ESB/6321ESB PCI Express Downstream Port E3 (rev 01)
04:00.0 Ethernet controller: Intel Corporation 80003ES2LAN Gigabit Ethernet Controller (Copper) (rev 01)
04:00.1 Ethernet controller: Intel Corporation 80003ES2LAN Gigabit Ethernet Controller (Copper) (rev 01)
06:00.0 PCI bridge: Intel Corporation 80333 Segment-A PCI Express-to-PCI Express Bridge
06:00.2 PCI bridge: Intel Corporation 80333 Segment-B PCI Express-to-PCI Express Bridge
07:0e.0 RAID bus controller: Adaptec AAC-RAID
0a:00.0 PCI bridge: Intel Corporation 6702PXH PCI Express-to-PCI Bridge A (rev 09)
0c:01.0 VGA compatible controller: ATI Technologies Inc ES1000 (rev 02)
[root@server kernels]#

[root@server ~]# lsmod
Module Size Used by
ip_conntrack_irc 11181 0
xt_conntrack 6876 0
xt_state 6544 16
ip_conntrack_ftp 11800 0
ipt_recent 13376 0
ipt_LOG 10781 0
xt_length 6312 0
xt_mac 6274 0
xt_multiport 7643 4
ipt_ttl 6266 0
xt_limit 6976 6
ipt_TOS 6555 14
ipt_ULOG 12126 0
ipt_TCPMSS 8276 1
ipt_owner 6335 0
ipt_ecn 6579 0
ip_conntrack 49498 4 ip_conntrack_irc,xt_conntrack,xt_state,ip_conntrack_ftp
ptpatch2008 7144 0
xt_tcpudp 7444 194
ipv6 248537 39
sunrpc 155556 1
iptable_filter 7336 1
iptable_mangle 7151 1
ip_tables 17800 2 iptable_filter,iptable_mangle
x_tables 19427 16 xt_conntrack,xt_state,ipt_recent,ipt_LOG,xt_length,xt_mac,xt_multiport,ipt_ttl,xt_limit,ipt_TOS,ipt_ULOG,ipt_TCPMSS,ipt_owner,ipt_ecn,xt_tcpudp,ip_tab les
dm_mirror 27216 0
dm_mod 60685 1 dm_mirror
button 11061 0
battery 14432 0
asus_acpi 20440 0
ac 9549 0
i2c_i801 12050 0
i2c_core 25366 1 i2c_i801
shpchp 40012 0
e1000 119987 0
floppy 61606 0
ext3 130212 6
jbd 61020 1 ext3
ata_piix 19728 0
libata 104369 1 ata_piix
aacraid 60341 7
usb_storage 66142 0
uhci_hcd 26859 0
ohci_hcd 23774 0
ehci_hcd 34026 0
sd_mod 24286 8
scsi_mod 136564 4 libata,aacraid,usb_storage,sd_mod

[root@server ~]# cat /etc/modprobe.conf
alias scsi_hostadapter usb-storage
alias eth0 e1000
alias eth1 e1000
alias scsi_hostadapter1 aacraid
alias scsi_hostadapter2 ata_piix
alias scsi_hostadapter3 usb-storage
alias usb-controller ehci-hcd
alias usb-controller1 uhci-hcd
[root@server ~]#

View 0 Replies


ADVERTISEMENT

Grsec WARNING: No Module Mptscsi Found For Kernel 2.6.22.9-grsec,

Mar 27, 2008

I see the following error, while trying to compile kernel with grsec.

WARNING: No module mptscsi found for kernel 2.6.22.9-grsec, continuing anyway

how to fix this or is it ok to reboot?

More details
#################
[root@server3 linux-2.6.22.9]# make install
sh /usr/src/kernels/linux-2.6.22.9/arch/i386/boot/install.sh 2.6.22.9-grsec arch/i386/boot/bzImage System.map "/boot"
WARNING: No module mptscsi found for kernel 2.6.22.9-grsec, continuing anyway

[root@server3 linux-2.6.22.9]# lsmod
Module Size Used by
ipt_TOS 6465 14
ipt_TCPMSS 8129 1
ipt_state 5953 7
ip_conntrack_ftp 76529 0
ip_conntrack_irc 75633 0
ipt_LOG 10177 12
ipt_recent 12497 0
ipt_limit 6465 18
ip_conntrack 46085 3 ipt_state,ip_conntrack_ftp,ip_conntrack_irc
ipt_multiport 6081 0
iptable_mangle 6849 1
ipt_REJECT 10689 42
loop 20681 2
iptable_filter 6977 1
ip_tables 22721 10 ipt_TOS,ipt_TCPMSS,ipt_state,ipt_LOG,ipt_recent,ipt_limit,ipt_multiport,iptable_mangle,ipt_REJECT,iptable_filter
md5 8129 1
ipv6 243553 32
parport_pc 28033 0
lp 15661 0
parport 38025 2 parport_pc,lp
autofs4 26053 0
sunrpc 144037 1
dm_mirror 31557 0
dm_mod 67177 1 dm_mirror
joydev 14465 0
button 10705 0
battery 12997 0
ac 8901 0
ohci_hcd 24273 0
ehci_hcd 32325 0
k8_edac 19173 0
edac_mc 28297 1 k8_edac
tg3 106437 0
ext3 120137 4
jbd 60121 1 ext3
sata_svw 12229 0
libata 106141 1 sata_svw
mptscsih 5569 0
mptsas 24661 5 mptscsih
mptspi 14033 1 mptscsih
mptscsi 42449 2 mptsas,mptspi
mptbase 67361 3 mptsas,mptspi,mptscsi
sd_mod 20801 6
scsi_mod 120909 5 libata,mptsas,mptspi,mptscsi,sd_mod

[root@server3 linux-2.6.22.9]# cat /etc/modprobe.conf
alias eth0 tg3
alias eth1 tg3
alias scsi_hostadapter mptbase
alias scsi_hostadapter1 mptscsi
alias scsi_hostadapter2 mptspi
alias scsi_hostadapter3 mptsas
alias scsi_hostadapter4 mptscsih
alias scsi_hostadapter5 sata_svw
alias usb-controller ehci-hcd
alias usb-controller1 ohci-hcd

[root@server3 linux-2.6.22.9]# cat /etc/redhat-release
CentOS release 4.6 (Final)

[root@server3 linux-2.6.22.9]# uname -a
Linux server3.name 2.6.9-67.ELsmp #1 SMP Fri Nov 16 12:48:03 EST 2007 i686 athlon i386 GNU/Linux
[root@server3 linux-2.6.22.9]#

[root@server3 linux-2.6.22.9]# lspci
00:01.0 PCI bridge: Broadcom BCM5785 [HT1000] PCI/PCI-X Bridge
00:02.0 Host bridge: Broadcom BCM5785 [HT1000] Legacy South Bridge
00:02.1 IDE interface: Broadcom BCM5785 [HT1000] IDE
00:02.2 ISA bridge: Broadcom BCM5785 [HT1000] LPC
00:03.0 USB Controller: Broadcom BCM5785 [HT1000] USB (rev 01)
00:03.1 USB Controller: Broadcom BCM5785 [HT1000] USB (rev 01)
00:03.2 USB Controller: Broadcom BCM5785 [HT1000] USB (rev 01)
00:04.0 VGA compatible controller: Matrox Graphics, Inc. MGA G200e [Pilot] ServerEngines (SEP1) (rev 02)
00:06.0 PCI bridge: Broadcom HT2100 PCI-Express Bridge (rev a2)
00:07.0 PCI bridge: Broadcom HT2100 PCI-Express Bridge (rev a2)
00:08.0 PCI bridge: Broadcom HT2100 PCI-Express Bridge (rev a2)
00:09.0 PCI bridge: Broadcom HT2100 PCI-Express Bridge (rev a2)
00:0a.0 PCI bridge: Broadcom HT2100 PCI-Express Bridge (rev a2)
00:18.0 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] HyperTransport Technology Configuration
00:18.1 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Address Map
00:18.2 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] DRAM Controller
00:18.3 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Miscellaneous Control
00:19.0 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] HyperTransport Technology Configuration
00:19.1 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Address Map
00:19.2 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] DRAM Controller
00:19.3 Host bridge: Advanced Micro Devices [AMD] K8 [Athlon64/Opteron] Miscellaneous Control
01:0d.0 PCI bridge: Broadcom BCM5785 [HT1000] PCI/PCI-X Bridge (rev c0)
01:0e.0 RAID bus controller: Broadcom BCM5785 [HT1000] SATA (Native SATA Mode)
02:01.0 SCSI storage controller: LSI Logic / Symbios Logic SAS1068 PCI-X Fusion-MPT SAS (rev 01)
07:00.0 PCI bridge: Broadcom EPB PCI-Express to PCI-X Bridge (rev b5)
08:04.0 Ethernet controller: Broadcom Corporation NetXtreme BCM5715 Gigabit Ethernet (rev a3)
08:04.1 Ethernet controller: Broadcom Corporation NetXtreme BCM5715 Gigabit Ethernet (rev a3)
[root@server3 linux-2.6.22.9]#

View 3 Replies View Related

Grsec Kernel = No Tcp Traffic

Jan 11, 2008

Tried building a grsec patched kernel as I don't fancy getting that rootkit thats going around for a second time

it was linux-2.6.23.9 which was the latest one there was a grsec patch for.

compiled ok as a monolithic kernel however on reboot I was not able to get anything but a ping from the server, Figured that the kernel had paniced and not booted.

However the tech who rebooted the server for me and selected the other kernel (a standard centos kernel) said that the system had booted but was not responding to tcp traffic.

So its either a case of

1) I missed something important when configuring the kernel.

2) perhaps a problem with APF it does warn enabling Monolithic kernel support is unsupported in the config file (although it seems to work fine with the centos stock kernel)...

I'm wandering what the best next course of action is i'd quite like to be able to run a kernel that doesn't allow write access to /dev/kmem if possible.

View 7 Replies View Related

Centos 5 Kernel 2.6.19.2-grsec Irqbalance

Jun 9, 2007

When I try to compile kernel 2.6.19.2-grsec I get the following error.

kernel: irqbalance[1750]: segfault at 000001b202b70b20 rip 000001b2028f9cdb rsp 000077a8404178f0 error 6
kernel: grsec: signal 11 sent to /usr/sbin/irqbalance[irqbalance:1750] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:1749] uid/euid:0/0 gid/egid:0/0

I must have tryed to compile the kernel 20 different ways with or with out grsec and I still get the same irqbalance error.

My server is a
AMD Athlon 64 X2 4800+
2GB of DDR2 800 ram
x2 160GB hard drives soft ware raid 1
nvidia chipset mother board

View 4 Replies View Related

Server Crashing, Cgi And Grsec

Feb 20, 2007

this server is crashing after a few hours... it just got frozen... and after rebooted the server, i was looking at the /var/log/message logs and saw this ( you will see when system restart after the crash ):

Code:
Feb 20 17:35:04 server kernel: grsec: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:13280]
uid/euid:48/48 gid/egid:48/48, parent /us
r/sbin/httpd[httpd:6180] uid/euid:48/48 gid/egid:48/48
Feb 20 17:41:40 server kernel: grsec: From 190.73.138.68: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:27459]
uid/euid:48/48 gid/eg
id:48/48, parent /usr/sbin/httpd[httpd:20166] uid/euid:48/48 gid/egid:48/48
Feb 20 17:45:03 server kernel: grsec: signal 7 sent to /usr/bin/php[php:31710]
uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:8963] uid/euid:0/0
gid/egid:0/0
Feb 20 17:48:41 server kernel: grsec: From 87.219.205.218: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:11897]
uid/euid:48/48 gid/e
gid:48/48, parent /usr/sbin/httpd[httpd:8152] uid/euid:48/48 gid/egid:48/48
Feb 20 17:51:04 server kernel: grsec: From 85.58.139.135: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:28508]
uid/euid:48/48 gid/eg
id:48/48, parent /usr/sbin/httpd[httpd:19918] uid/euid:48/48 gid/egid:48/48
Feb 20 17:51:58 server kernel: grsec: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:15615]
uid/euid:48/48 gid/egid:48/48, parent /us
r/sbin/httpd[httpd:2482] uid/euid:48/48 gid/egid:48/48
Feb 20 17:52:08 server kernel: grsec: From 166.114.104.42: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:4662]
uid/euid:48/48 gid/eg
id:48/48, parent /usr/sbin/httpd[httpd:24468] uid/euid:48/48 gid/egid:48/48
Feb 20 17:52:38 server kernel: grsec: From 189.175.50.103: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:12497]
uid/euid:48/48 gid/e
gid:48/48, parent /usr/sbin/httpd[httpd:32213] uid/euid:48/48 gid/egid:48/48
Feb 20 17:54:32 server kernel: grsec: From 83.53.142.7: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:18556]
uid/euid:48/48 gid/egid
:48/48, parent /usr/sbin/httpd[httpd:22809] uid/euid:48/48 gid/egid:48/48
Feb 20 17:55:04 server kernel: grsec: signal 7 sent to /usr/bin/php[php:29694]
uid/euid:502/502 gid/egid:502/502, parent /bin/bash[sh:30003]
uid/euid:502/502 gid
/egid:502/502
Feb 20 18:00:54 server kernel: grsec: From 189.141.26.82: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:10817]
uid/euid:48/48 gid/eg
id:48/48, parent /usr/sbin/httpd[httpd:13549] uid/euid:48/48 gid/egid:48/48
Feb 20 18:01:07 server kernel: grsec: signal 7 sent to /usr/bin/php[php:20901]
uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:12242] uid/euid:0/0
gid/egid:0/0
Feb 20 18:03:06 server kernel: grsec: signal 7 sent to /usr/bin/php[php:9696]
uid/euid:502/502 gid/egid:502/502, parent /bin/bash[sh:23721]
uid/euid:502/502 gid/
egid:502/502
Feb 20 18:03:29 server kernel: grsec: From 68.26.197.159: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:917]
uid/euid:48/48 gid/egid
:48/48, parent /usr/sbin/httpd[httpd:20771] uid/euid:48/48 gid/egid:48/48
Feb 20 18:04:43 server kernel: grsec: From 87.219.88.132: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:10750]
uid/euid:48/48 gid/eg
id:48/48, parent /usr/sbin/httpd[httpd:4130] uid/euid:48/48 gid/egid:48/48
Feb 20 18:05:04 server kernel: grsec: From 189.167.128.26: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:14515]
uid/euid:48/48 gid/e
gid:48/48, parent /usr/sbin/httpd[httpd:2598] uid/euid:48/48 gid/egid:48/48
Feb 20 18:07:05 server kernel: grsec: signal 7 sent to /usr/bin/php[php:29589]
uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:7958] uid/euid:0/0
gid/egid:0/0
Feb 20 18:08:31 server kernel: grsec: From 88.64.181.89: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:15335]
uid/euid:48/48 gid/egi
d:48/48, parent /usr/sbin/httpd[httpd:27788] uid/euid:48/48 gid/egid:48/48
Feb 20 18:08:43 server kernel: grsec: From 201.244.116.46: signal 11 sent
to /usr/www/htdocs/mywebsite.com_cgi/script/out.cgi[out.cgi:15217]
uid/euid:48/48 gid/e
gid:48/48, parent /usr/sbin/httpd[httpd:29545] uid/euid:48/48 gid/egid:48/48
Feb 20 18:17:34 server syslogd x.x.x: restart.
Feb 20 18:17:34 server syslog: Iniciaci� de syslogd succeeded
Feb 20 18:17:34 server kernel: klogd x.x.x, log source = /proc/kmsg started.
Feb 20 18:17:34 server kernel: Linux version 2.x.xxgrs-bipiv-ipv4
(root@kernel.myserver.net) (gcc version xxxx) #1 SMP Tue Jan 31 17:34:40 CET 2006
Feb 20 18:17:34 server kernel: BIOS-provided physical RAM map:
Feb 20 18:17:34 server kernel: BIOS-e820: 0000000000000000 - 000000000009c400
(usable)
Feb 20 18:17:34 server kernel: BIOS-e820: 000000000009c400 - 00000000000a0000
(reserved)
Feb 20 18:17:34 server kernel: BIOS-e820: 00000000000ea070 - 0000000000100000
(reserved)
Feb 20 18:17:34 server kernel: BIOS-e820: 0000000000100000 - 000000007
Bold date are ( I think ) the crash, and the system booting...
Any ideas about what can be causing the crash.. ? Is this kernel compiled with GRSecurity ? may that affect cgis ?

This is a fedora core server, xeon 3.2 GHZ x 4 procs using about 25 MBits per day.

View 3 Replies View Related

OpenVZ PAE Hang?

Aug 12, 2007

I am trying to run the OpenVZ PAE kernel with 8 gigs of ram to back the server, however the server keeps suffering from hangings.

It starts 2 or 3 vpses fine, but once it hits 4 or so, it hangs without a kernel panic or any other proper error message.

The kernel version is 2.6.18-8.1.8.el5.028stab039.1PAE but it also does it on 2.6.18-ovz028stab039.1-enterprise

Anybody have the same problem and come up with a solution? Node is running CentOS 5.

View 3 Replies View Related

Apache Used To Hang

Apr 4, 2008

I have a dedicated server running CentOS which has been been running fine for a while now.

On the odd day Apache used to hang, I presume due to load so I installed SIM (System Integrity Manager) to check the status of httpd and to re-start when necessary.

Every now and again SIM would email saying that apache was re-started, no big deal.

Then this morning I got a email from SIM saying apache was down but couldn't be re-started. I then logged into the shell and tried to do a: service httpd restart

I then got a message saying something like: could not bind to port 80. I then tried to kill all httpd processes and re-start apache but the problem persisted. I then just rebooted my server and apache started fine.

Since then I have had hundreds of emails from SIM saying that it has had to re-start apache. Somehow it is detecting it as down and re-starting it. Apache seems to be up and fine. Re-installing SIM does not help.

The weird thing is when I logged in using Putty I got the "server's host key did not match the signature supplied" message like something had changed.

Rkhunter does not return anything just a couple of warnings.

Does anybody know what would cause sim to constantly detect Apache as down in this situation and also how this could happen with no changes being made?

View 1 Replies View Related

Weird Periodic Hang

Jul 9, 2007

For the last week, my vps (directadmin on centos on xen) has become unresponsive every three days at approximately 5 AM, and I'm baffled about why. It doesn't crash, but it stops accepting incoming connections until it's rebooted.

I'm not sure how to troubleshoot this. /var/log/messages gives no useful information. There are no unusual cronjobs running at that time.

Anyone heard of anything like this before or have any advice about how to troubleshoot?

View 6 Replies View Related

What To Check When Server Hang

Sep 3, 2007

One of my server hang w/o obvious reason. What is the checklist to adhere when troubleshooting? It is running on FreeBSD

View 5 Replies View Related

[kernel: Kernel BUG At Mm/rmap.c:479] Any Idea What This Is?

Mar 29, 2007

we have one box in hivelocity.net that has been down so many times this month that we were forced to remove links to siteuptime where we were once so proud of having a 99.7% uptime for 3 years in theplanet.

syslog shows that just before crashing, these entries were made:

kernel: kernel BUG at mm/rmap.c:479
kernel: invalid operand:0000 [#1]

dmesg also shows this:

...
Brought up 2 CPUs
zapping low mappings.
checking if image is initramfs... it is
Freeing initrd memory: 482k freed
NET: Registered protocol family 16
PCI: PCI BIOS revision 2.10 entry at 0xf9f20, last bus=1
PCI: Using configuration type 1
mtrr: v2.0 (20020519)
mtrr: your CPUs had inconsistent fixed MTRR settings
mtrr: probably your BIOS does not setup all CPUs.
mtrr: corrected configuration.
...

i've googled these messages and they point to ram problems.

hivelocity.net claims to have done diagnostics on the box and that there were no problems reported.

they said this is a result of a sys configuration problem made by us.

any ideas?

View 8 Replies View Related

Kernel Headers For Virtuozzo Kernel

May 20, 2009

running centos/virtuozzo 2.6.18-028stab062.3

when i configure vmware it asks at one point for kernel header files. where would i find them to match the current kernel?

i asked at parallels forums but help there is very scarce. i checked openVZ repositories and they dont yet have headers for this version.

what are my options? i have one last windows machine left and want to run it in VMware.

View 0 Replies View Related

Centos + Kernel 2.6.9-34.0.2- How To Upgrade Kernel

Apr 29, 2007

Last year I ordered a new server with Centos 4.3 and it had the kernel kernel 2.6.9-34.0.2ELsmp installed. It runned fine and I didn't update any packages since then.

Today I started getting a problem where both mysqld and kswapd0 uses very high amounts of CPU, spiking up to 100% and my memory usage is at 99% all the time. The problem seems exactly the same as the one mentioned in this thread.

In that thread the exact same kernel is said to be insecure and to cause this problem. I also came across a centOS bug that reports this problem with high cpu, mem usage and mysql & kswapd0 consuming all resources.

In the linked thread the person solved the problem by upgrading to kernel 2.6.9-42 using rpms but others recommended a newer kernel or a custom compiled kernel for CentOS.

Apparently when they used yum it said 34.0.2 was the latest kernel.

What should I do to upgrade the kernel, which version should i upgrade to, and where do I get it from? I won't be able to compile a custom kernel and I've only installed basic rpm packages before.

View 5 Replies View Related

Domain Name Server Freeze/Hang

May 9, 2009

i have a strange issue on one of my servers where dns keeps freezing or hanging every now and then, if i restart the service on cpanel.

View 6 Replies View Related

Coldfusion 8 - MSSQL 5 Page Hang

Oct 26, 2009

We had a Coldfusion site running MySQL without issues. We are in the process of doing some upgrades and as part of that we recently switched over to MSSQL 5. Ever since that happened, we will have random page hangs. This usually happens on pages with more complex queries, but it is very random. There is no timeout error on the server, no page cannot be displayed errors, no errors of any kind, the page will just hang. We have been monitoring our server resource monitor and we can see when the page 'gives up', we will go from 100% CPU down to almost 0, and then the page simply never recovers. Does anyone have any idea what might be going on? When there is no error message of sorts it makes it very problematic to troubleshoot.

View 3 Replies View Related

Server Hang - No Free Swap

Mar 24, 2008

I encounter this problem in one of my server today..

Memory is 99% used
Swap is 100% used

top - 20:50:53 up 2 days, 7:05, 2 users, load average: 69.58, 41.63, 24.91
Tasks: 397 total, 57 running, 334 sleeping, 1 stopped, 5 zombie
Cpu(s): 1.9% us, 96.5% sy, 0.1% ni, 0.0% id, 0.0% wa, 0.5% hi, 1.0% si
Mem: 2076300k total, 2027140k used, 49160k free, 1116k buffers
Swap: 5245212k total, 5245212k used, 0k free, 13108k cached

Over my KVM, it just hang. When I try to type something, it shows this on the KVM screen:

[17379796.260000] HighMem 59*4kB 3*8kB 0*16kB 0*32kB 0*64kB 1*128kB 1*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 664kB
[17379796.260000] Swap cache: add 6615861, delete 6615849, find 2695269/27558673, race 0+86
[17379796.260000] Free swap = 0kB
[17379796.260000] Total swap = 5245212kB

Based on the message on screen, what is the message telling me?

[17379796.260000] HighMem 59*4kB 3*8kB 0*16kB 0*32kB 0*64kB 1*128kB 1*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 664kB
[17379796.260000] Swap cache: add 6615861, delete 6615849, find 2695269/27558673, race 0+86

View 12 Replies View Related

Server To Hang/overload Once Its Rebooted

Apr 5, 2007

how can i find out what has caused my server to hang/overload once its rebooted?

I know that the SWAP maxed out but i am unsure why.

View 6 Replies View Related

E1000_clean_tx_irq: Detected Tx Unit Hang

Aug 11, 2007

in one of my CentOS 64bit, there is errors with NICs

NETDEV WATCHDOG: eth0: transmit timed out
e1000: eth0: e1000_watchdog_task: NIC Link is Up 100 Mbps Full Duplex
e1000: eth0: e1000_watchdog_task: 10/100 speed: disabling TSO
e1000: eth0: e1000_clean_tx_irq: Detected Tx Unit Hang
Tx Queue <0>
TDH <59>
TDT <5c>
next_to_use <5c>
next_to_clean <58>
buffer_info[next_to_clean]
time_stamp <1241628eb>
next_to_watch <59>
jiffies <124162eba>
next_to_watch.status <0>
e1000: eth0: e1000_clean_tx_irq: Detected Tx Unit Hang
Tx Queue <0>
TDH <59>
TDT <5c>
next_to_use <5c>
next_to_clean <58>
buffer_info[next_to_clean]
time_stamp <1241628eb>
next_to_watch <59>
jiffies <12416368a>
next_to_watch.status <0>

Is there any idea for fixing? It's SM PDSMI+ board. Kernel 2.6.9-55.0.2.ELsmp #1 SMP Tue Jun 26 14:14:47 EDT 2007 x86_64 x86_64 x86_64 GNU/Linux

View 1 Replies View Related

Apache :: Awkward Delay / Hang While Using Proxy

Apr 11, 2013

I am using apache proxypass to proxy to 4 different ports (java/jsp applications) with the following configurations (for each):

<VirtualHost *:80>
ProxyPreserveHost On
ProxyRequests Off
ServerName *****.org
ProxyPass / http://*****.org:8080/ retry=0
ProxyPassReverse / http://*****.org:8080/
</VirtualHost>

Everything seems work fine until an awkward delay / connection timeout occurs. The web application hangs for about 5 to 15 seconds and starts working normally after that period. It's certainly not the application's issue because everything is fine when using IP address to access it.

When I enabled the debug log in apache, I found out that every time the server seems to hang, the following error appears in the apache error log and the number of apache child processes keep on increasing (ps aux | grep apache).

[Thu Apr 11 10:20:41 2013] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 4 in child 13208 for worker proxy:reverse
[Thu Apr 11 10:20:41 2013] [debug] proxy_util.c(1837): proxy: worker proxy:reverse already initialized
[Thu Apr 11 10:20:41 2013] [debug] proxy_util.c(1934): proxy: initialized single connection worker 4 in child 13208 for (*)
[Thu Apr 11 10:20:41 2013] [debug] proxy_util.c(1818): proxy: grabbed scoreboard slot 3 in child 13208 for worker http://*****.org:8080/
.....
Also, the access log (access.log) completely stops during that hang period.

This debug message keeps on repeating as long as Apache/web-application is not responding. The application starts to work normally after that duration and the number of apache child process decrease to the normal number.

Apache version : 2.2.16 (Debian)
OS : Debian GNU/Linux 6.0
root@server:~# apache2 -V
Server version: Apache/2.2.16 (Debian)
Server built: Nov 30 2012 08:58:36

[Code]....

View 3 Replies View Related

Kernel Source Install Help Needed On Fc6 X64I Am Trying To Install The Kernel Source.

May 13, 2007

I am trying to install the kernel source.
I have downloaded kernel-2.6.20-1.2948.fc6.src.rpm
I am using fedora 6 64bit.
here are my current kernels:

kernel-headers-2.6.20-1.2948.fc6
kernel-devel-2.6.20-1.2944.fc6
yum-kernel-module-1.0.3-1.fc6
kernel-2.6.20-1.2944.fc6
kernel-devel-2.6.20-1.2948.fc6
kernel-2.6.20-1.2948.fc6


here is what I seen when I installed kernel-2.6.20-1.2948.fc6.src.rpm

rpm -ivh kernel-2.6.20-1.2948.fc6.src.rpm
1:kernel warning: user brewbuilder does not exist - using root
warning: group brewbuilder does not exist - using root
warning: user brewbuilder does not exist - using root
########################################### [100%]
warning: user brewbuilder does not exist - using root
warning: group brewbuilder does not exist - using root


then when I ran:
rpmbuild -bp --target=$(uname -m) /usr/src/redhat/SPECS/kernel-2.6.spec

I seen this error:
+ Arch=x86_64
+ make ARCH=x86_64 nonint_oldconfig
In file included from /usr/include/sys/socket.h:35,
from /usr/include/netinet/in.h:24,
from /usr/include/arpa/inet.h:23,
from scripts/basic/fixdep.c:117:
/usr/include/bits/socket.h:310:24: error: asm/socket.h: No such file or directory
make[1]: *** [scripts/basic/fixdep] Error 1
make: *** [scripts_basic] Error 2
error: Bad exit status from /var/tmp/rpm-tmp.93770 (%prep)


I need to have this installed to get a app installed etc...
suggestions or ideas?
thanks

View 2 Replies View Related

Box Don't Reboot

Nov 4, 2008

I have a dedicated server, on Debian Etch.

When I type a command with putty, the connection is closed immediately. I tried shutdown-r now and reboot, halt, do nothing to console closes and nothing happens.

After a hundred connection, I can use ls, su and kill.

I think it's the fact that the partition is corrupted. I can not Hardware reboot the server because CTN1 is "out of business".

Do you know another way to restart the server

View 3 Replies View Related

Reboot Cron Job

Aug 20, 2007

VPS isn't rebooting by itself when it goes down. Anyone has any program/script that monitors heartbeat of the server? Like when it goes down, the program will automatically reboots the system. I know there's such a script out there but I forgot what it called.

View 2 Replies View Related

Periodic Reboot

Jun 1, 2009

how to configure a periodic reboot, for example, each 4h the server will be reboot automatic.

i think i do configure a cron, but i can't find anything for periodic rebooting on freebsd.

this is a temporary solution for a issue of php.

View 13 Replies View Related

Server Reboot ...

Jan 8, 2008

I had to reboot my server and about 20 minutes later I tried to access the web site but the page was not found... I am able to login to SSH. However, I am not familiar with *nix or the workings of CPanel... What should I do to get the sites back online?

View 9 Replies View Related

After Graceful Reboot

Jan 4, 2008

After a graceful reboot I am having problems with a few things.

First cpsrvd and lfd failed to start, but I fixed it doing this:

rm -f /usr/local/cpanel/cpanel
rm -f /scripts/installgd
rm -f /scripts/cleanmd5
rm -f /scripts/upcp

But next to all the drives it says "No DMA! (Click to Enable)", I click that and it says things:

Quote:

EIDE Hard Drive Optimizations Enabled
/dev/hdc:
setting 32-bit IO_support flag to 1
IO_support = 1 (32-bit)

But after going back to Service Status it still says that.

So I tried to enable it through a command by typing:

sudo hparm -d1 /dev/hdc5

And get this error:

Quote:

/dev/hdc5:
setting using_dma to 1 (on)
HDIO_SET_DMA failed: Invalid argument
using_dma = 0 (off)

View 7 Replies View Related

Reboot Failure

Mar 18, 2008

so my server dies every day and requires human intervention to fully restart all service to have my site work properly. i suspect sigterm issues as it fails to restart all service as website is still down so i always have to reboot it.

Tried recompile apache with no success
[Tue Mar 18 06:51:27 2008] [error] [client 203.160.1.39] request failed: erroneous characters after protocol string: If-Modified-Since: Wed, 21 Nov 2007 06:16:52 GMT
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [notice] caught SIGTERM, shutting down
[Tue Mar 18 10:03:20 2008] [notice] mod_security/1.9.5 configured - Apache/1.3.39 (Unix) PHP/5.2.5
[Tue Mar 18 10:03:20 2008] [notice] Any You Like mod_ssl/2.8.30 OpenSSL/0.9.8g mod_perl/1.29 FrontPage/5.0.2.2510 configured -- resuming normal operations
[Tue Mar 18 10:03:20 2008] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Tue Mar 18 10:03:20 2008] [notice] Accept mutex: sysvsem (Default: sysvsem)

View 1 Replies View Related

Ssh: Reboot Never Works

Mar 7, 2008

I'm finding that my server doesn't like to reboot gracefully. Either selecting "graceful server reboot" in WHM or actually typing "reboot" in SSH, which then tells me the server is shutting down. My server is then incommunicato indefinitely until I actually do a hard reset remotely.

Is this common? Is there some way to find out why this is happening?

View 3 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved