We have dedicated server (Cpanel installed) in that I would like to install the mod_evasive for disabling the DOS attack. So that I have followed the below url
[url]
In that httpd-devel asked to update. # up2date install httpd-devel*
When I update the httpd-devel I got message like
The following Packages were marked to be skipped by your configuration:
Name Version Rel Reason ------------------------------------------------------------------------------- httpd-devel 2.0.52 38.ent.2Pkg name/pattern
The following wildcards did not match any packages: httpd-devel*
So that I have removed the pkg-skip list from up2date command
# vi /etc/sysconfig/rhn/up2date
and tryied to update
# up2date install httpd-devel*
Later I am getting the following message.
Fetching Obsoletes list for channel: rhel-i386-es-4...
Fetching Obsoletes list for channel: rhel-i386-es-4-extras...
to install mod_evasive module on our Apache2 that runs on Fedora server. However, for that we need Apache's apxs to compile it. We found out that we can do that by running the
yum install httpd-devel However, when we run that, we get the following:
============================================================================= Package Arch Version Repository Size ============================================================================= Installing: httpd-devel i386 2.2.8-1.fc7 updates 144 k Updating: httpd i386 2.2.8-1.fc7 updates 1.0 M openldap i386 2.3.34-7.fc7 updates 291 k Installing for dependencies: apr-devel i386 1.2.8-6 fedora 170 k apr-util-devel i386 1.2.10-1.fc7 updates 54 k cyrus-sasl-devel i386 2.1.22-8.fc7 updates 351 k db4-devel i386 4.5.20-5.fc7 fedora 2.3 M expat-devel i386 1.95.8-9 fedora 129 k openldap-devel i386 2.3.34-7.fc7 updates 1.5 M Updating for dependencies: httpd-manual i386 2.2.8-1.fc7 updates 821 k mod_ssl i386 1:2.2.8-1.fc7 updates 85 k openldap-clients i386 2.3.34-7.fc7 updates 179 k
Total download size: 7.0 M We're kind of cautios, because we have never updated Apache on our live server. We'd prefer if we could download and install just the httpd-devel module. Is this possible?
If not, would this mess up any of our existing configuration? Could we expect any problems? And do we need to shut Apache down, then run the updates and only then restart it?
i am using seperate server for sql .But my httpd server failed many time when i checked maximum number of httpd connection then my sql server using too many connection what is the reason of this problem . Is my sql server using as a slave in a ddos attack or sql server need http connection?
i have creat my new user and upload his files on it. but when i try this link:
http://ip/~user
i have this error and my friend say that your httpd have problem. but its my new server. how can i solve it ?
404 Not Found
The server can not find the requested page:
ip/~user (port 80)
Please forward this error screen to 69.197.166.71's WebMaster. Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8b mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 PHP/5.2.8 Server at 69.197.166.71 Port 80
I have 1764 pid started by httpd daemon. I think for some reason the httpd pid is not closing for me. How do i make sure that all of the httpd pid are closing.
I know that there are a lot of posts about this but... i have a problem w my apache... it was working fine until today... i get this e-mail from WHM whenever httpd fails... and its pretty often:
Quote:
httpd failed @ Mon Aug 18 16:23:13 2008. A restart was attempted automagically.
Failure Reason: Timeout while trying to connect to service
I wanna know how to check in the error log the entries of just today. because when i put "cat error_log" i start receiving things from last week and this is happening today...
i've tried /scripts/rebuildhttpdconf and then restarted, but still the same.
I just got apache installed on my box and the process is running. However when I enter my ip address on firefox, nothing loads up and I get a timeout error.
I did a Graceful Server Reboot, but it seems httpd service not running yet,
I got this error after try to restart Apache..
" Restarting Apache Web Server Waiting for httpd to restart..............finished. httpd (/usr/local/cpanel/whostmgr/bin/whostmgr ./reshttpd) running as root with PID 3319 httpd has failed, please contact the sysadmin. "
and my Log:
[root@XXXXX ~]# tail -f /usr/local/apache/logs/error_log Failed to start up concurrent users module! [Sat Jul 25 20:39:51 2009] [notice] suEXEC mechanism enabled (wrapper: /usr/loca l/apache/bin/suexec) [Sat Jul 25 20:39:52 2009] [warn] pid file /usr/local/apache/logs/httpd.pid over written -- Unclean shutdown of previous Apache run? [Sat Jul 25 20:39:52 2009] [crit] (28)No space left on device: Unable to create or access scoreboard (anonymous shared memory failure) shmget() failed: No space left on device ....
I just stop httpd service for server maintainance , and disable its monitoring from whm services, but after some time it again start even i disable httpd monitoring and service.
I moved a domain of mine from one of my CentOS servers on my SoHo LAN, to one of my CentOS cPanel/WHM servers. Since the SoHo machine had been handling this domain's mail for almost 2 years (300+ mb of mail), I decided to continue running it from home.
The Apache daemon was stopped on said SoHo box following DNS propagation to the cPanel machine, but Apache was automatically started again after having to reboot the SoHo server. Before I got a chance to kill Apache, I got some weird entries showin' up in the access_logs.
I ask simply because I don't recall seeing a "CONNECT" entry in my logs before, and I've been at this for awhile. That or I've just not paid any attention. And what's with the SSL port?
I guess I'm just a little confused as to what was trying to be accomplished here...it hasn't returned since.
right ive got a server thats getting battered at the moment by lots of apache processes, ive moved sql off to a seperate box (with private lan so thats fine) but now i need to optimize/replace apache with something less intensive on resources, only problem is im using plesk on this server so i am not sure if i can change the webserver app?
Trying to troubleshoot an exploit where the code redirecting people to exploit sites is not in the website. I think a module is being loaded dynamically, but I am not seeing the entry point in the access logs. I restart httpd and the problem goes away temporarily.
Anyone see anything fishy?
================== HTTPD MODULES ================== [root@xxx ~]# httpd -L <Directory (core.c) Container for directives affecting resources located in the specified directories Allowed in *.conf only outside <Directory>, <Files> or <Location> <Location (core.c) Container for directives affecting resources accessed through the specified URL paths Allowed in *.conf only outside <Directory>, <Files> or <Location> <VirtualHost (core.c) Container to map directives to a particular virtual host, takes one or more host addresses Allowed in *.conf only outside <Directory>, <Files> or <Location> <Files (core.c) Container for directives affecting files matching specified patterns Allowed in *.conf anywhere and in .htaccess when AllowOverride isn't None <Limit (core.c) Container for authentication directives when accessed using specified HTTP methods Allowed in *.conf anywhere and in .htaccess when AllowOverride isn't None <LimitExcept (core.c) Container for authentication directives to be applied when any HTTP method other than those specified is used to access the resource Allowed in *.conf anywhere and in .htaccess when AllowOverride isn't None <IfModule (core.c) Container for directives based on existance of specified modules Allowed in *.conf anywhere and in .htaccess when AllowOverride isn't None <IfDefine (core.c) Container for directives based on existance of command line defines Allowed in *.conf anywhere and in .htaccess when AllowOverride isn't None <DirectoryMatch (core.c) Container for directives affecting resources located in the specified directories Allowed in *.conf only outside <Directory>, <Files> or <Location> <LocationMatch (core.c) Container for directives affecting resources accessed through the specified URL paths Allowed in *.conf only outside <Directory>, <Files> or <Location> <FilesMatch (core.c) Container for directives affecting files matching specified patterns Allowed in *.conf anywhere and in .htaccess when AllowOverride isn't None AuthType (core.c) An HTTP authorization type (e.g., "Basic") Allowed in *.conf only inside <Directory>, <Files> or <Location> and in .htaccess when AllowOverride includes AuthConfig AuthName (core.c) The authentication realm (e.g. "Members Only") Allowed in *.conf only inside <Directory>, <Files> or <Location> and in .htaccess when AllowOverride includes AuthConfig Require (core.c) Selects which authenticated users or groups may access a protected space Allowed in *.conf only inside <Directory>, <Files> or <Location> and in .htaccess when AllowOverride includes AuthConfig Satisfy (core.c) access policy if both allow and require used ('all' or 'any') Allowed in *.conf only inside <Directory>, <Files> or <Location> and in .htaccess when AllowOverride includes AuthConfig AddDefaultCharset (core.c) The name of the default charset to add to any Content-Type without one or 'Off' to disable Allowed in *.conf anywhere and in .htaccess when AllowOverride includes FileInfo AcceptPathInfo (core.c) Set to on or off for PATH_INFO to be accepted by handlers, or default for the per-handler preference Allowed in *.conf anywhere and in .htaccess when AllowOverride includes FileInfo AccessFileName (core.c) Name(s) of per-directory config files (default: .htaccess) Allowed in *.conf only outside <Directory>, <Files> or <Location> DocumentRoot (core.c) Root directory of the document tree Allowed in *.conf only outside <Directory>, <Files> or <Location> ErrorDocument (core.c) Change responses for HTTP errors Allowed in *.conf anywhere and in .htaccess when AllowOverride includes FileInfo AllowOverride (core.c) Controls what groups of directives can be configured by per-directory config files Allowed in *.conf only inside <Directory>, <Files> or <Location> Options (core.c) Set a number of attributes for a given directory Allowed in *.conf anywhere and in .htaccess when AllowOverride includes Options DefaultType (core.c) the default MIME type for untypable files Allowed in *.conf anywhere and in .htaccess when AllowOverride includes FileInfo...
I have some webs with 30K/40K visits each day (it's not too much)... A smaller CPU with 1Gb RAM with cPanel and Apache 1.3 worked perfectly, and now with a bigger computer and plesk I see this...
More info on server-status
Server Version: Apache/2.0.54 (Fedora) Server Built: Jul 26 2006 11:00:19
Current Time: Monday, 28-Apr-2008 23:40:53 CEST Restart Time: Monday, 28-Apr-2008 23:25:38 CEST Parent Server Generation: 0 Server uptime: 15 minutes 14 seconds Total accesses: 13025 - Total Traffic: 44.9 MB CPU Usage: u1183.04 s50.79 cu.01 cs0 - 135% CPU load 14.3 requests/sec - 50.3 kB/second - 3616 B/request 34 requests currently being processed, 67 idle workers
In My server i Can see lotz of /usr/local/apache/bin/httpd -k start -DSSL Process also some time it lead to crash of my server,is this caused to improper httpd.con file iam have 200-250 online users here i will give my apachi cofig file
It seems to be common that in httpd status in Apache 2.x except real connections you can also see multiple connections from www.example.com Is it a bug and if not is there a way to make httpd status to not show those www.example.com connections?
I have httpd down right now without any error outputted on errors_log my server is with 4 Quad-Core Intel Xeon 2.66GHz (16 CPu) and 16GB of RAM. Is running CentOS Linux 5.1 and Apache/2.2.8. The site that will be running in this server has an average of 360,000 pageviews daily, so we want to make sure to tweak the configuration at its best.
my httpd.Conf:
Include "/usr/local/apache/conf/includes/pre_main_global.conf" Include "/usr/local/apache/conf/includes/pre_main_2.conf" # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # Direct modifications to the Apache configuration file may be lost upon subsequent regeneration of the # # configuration file. To have modifications retained, all modifications must be checked into the # # configuration system by running: # # /usr/local/cpanel/bin/apache_conf_distiller --update # # To see if your changes will be conserved, regenerate the Apache configuration file by running: # # /usr/local/cpanel/bin/build_apache_conf # # and check the configuration file for your alterations. If your changes have been ignored, then they will # # need to be added directly to their respective template files. # # # # It is also possible to add custom directives to the various "Include" files loaded by this httpd.conf # # For detailed instructions on using Include files and the apache_conf_distiller with the new configuration # # system refer to the documentation at: [url] # # # # This configuration file was built from the following templates: # # /var/cpanel/templates/apache2/main.default # # /var/cpanel/templates/apache2/main.local # # /var/cpanel/templates/apache2/vhost.default # # /var/cpanel/templates/apache2/vhost.local # # /var/cpanel/templates/apache2/ssl_vhost.default # # /var/cpanel/templates/apache2/ssl_vhost.local # # # # Templates with the '.local' extension will be preferred over templates with the '.default' extension. # # The only template updated by the apache_conf_distiller is main.default. # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
Include "/usr/local/apache/conf/php.conf" Include "/usr/local/apache/conf/mod_bandwidth.conf" LoadModule security2_module modules/mod_security2.so #Include "/etc/httpd/conf/modsecurity.conf"
ErrorLog "logs/error_log" DefaultType text/plain
<Directory "/"> Options All AllowOverride All </Directory>
<Directory "/usr/local/apache/htdocs"> Options Includes Indexes FollowSymLinks AllowOverride None Order allow,deny Allow from all
</Directory>
<Files ~ "^error_log$"> Order allow,deny Deny from all Satisfy All </Files>
<FilesMatch "^.ht"> Order allow,deny Deny from all
# # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # Direct modifications to the Apache configuration file may be lost upon subsequent regeneration of the # # configuration file. To have modifications retained, all modifications must be checked into the # # configuration system by running: # # /usr/local/cpanel/bin/apache_conf_distiller --update # # To see if your changes will be conserved, regenerate the Apache configuration file by running: # # /usr/local/cpanel/bin/build_apache_conf # # and check the configuration file for your alterations. If your changes have been ignored, then they will # # need to be added directly to their respective template files. # # # # It is also possible to add custom directives to the various "Include" files loaded by this httpd.conf # # For detailed instructions on using Include files and the apache_conf_distiller with the new configuration # # system refer to the documentation at: [url]# # # # This configuration file was built from the following templates: # # /var/cpanel/templates/apache2/main.default # # /var/cpanel/templates/apache2/main.local # # /var/cpanel/templates/apache2/vhost.default # # /var/cpanel/templates/apache2/vhost.local # # /var/cpanel/templates/apache2/ssl_vhost.default # # /var/cpanel/templates/apache2/ssl_vhost.local # # # # Templates with the '.local' extension will be preferred over templates with the '.default' extension. # # The only template updated by the apache_conf_distiller is main.default. # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # # #
PidFile logs/httpd.pid LockFile logs/accept.lock # Defined in /var/cpanel/cpanel.config: apache_port Listen 0.0.0.0:80 Timeout 300 User nobody Group nobody ExtendedStatus On ServerAdmin soso@soso.com ServerName server.soso.org LogLevel warn ServerSignature Off
# DO NOT EDIT. AUTOMATICALLY GENERATED. IF YOU NEED TO MAKE A CHANGE PLEASE USE THE INCLUDE FILES.
# SSL <IfDefine SSL> </IfDefine>
# DO NOT EDIT. AUTOMATICALLY GENERATED. IF YOU NEED TO MAKE A CHANGE PLEASE USE THE INCLUDE FILES. <IfModule mod_evasive20.c> DOSHashTableSize 3097 DOSPageCount 7 DOSSiteCount 100 DOSPageInterval 1 DOSSiteInterval 1 DOSBlockingPeriod 300 </IfModule> NameVirtualHost xxx.xxx.152.250:80
my apache crashed and I trying to restart apache from SSH, when I run "service httpd start" I didn't get any message and I come back yo command prompt, but the httpd is down yet
i have adedicated server and it was running will but suddnly from 1 week to this time the httpd (2.2.9 (Unix)) failed and the sites down for amoment and then return to work well the server load and memory used are well there is no any overload so why this problem appear suddenly? and how to resolve it?
I tried that recently to install PHP 4 & PHP 5 on the same server - without any luck, i stumbled into a massive hole.
the existing httpd.conf was replaced and there was a backup made - stupid me accidently deleted this backup file and was left this a non-working copy of httpd.conf - if anyone can help me it would be much appreciated.
root@server1 [~]# /etc/init.d/httpd configtest Warning: DocumentRoot [/dev/null] does not exist Syntax OK
for the past 4 days i have being having problems with my Apache server. on day one i noticed it was going down irregularly over day 2/3 it got progressively worse by last night httpd would only work after i restarted it then 5minutes later it failed again. now it wont start at all every time i tried restarting from whm it just says 'httpd failed' ive also tried restarting from shell but no joy. ive tried rebuilding apache from whm that hasn't helped either. one error i was getting was 'invalid user name' of a user who i terminated yesturday.
