das Update von Ubuntu 18 auf 20 lief gut durch. Eigentlich wollte ich heute auch noch gleich auf Ubuntu 22 gehen, aber das lasse ich im Moment mal, da ja nicht mal die 20er funktioniert. Hier die Daten:
Server-Betriebssystem + Version
Ubuntu 20.04
Eingesetzte Server-Virtualisierung-Technologie
keine
KeyHelp-Version + Build-Nummer
?
Problembeschreibung / Fehlermeldungen
Keyhelp (und weitere Domains auf dem Server) nicht erreichbar
Erwartetes Ergebnis
Webserver läuft
Schritte zur Reproduktion
Habe das Upgrade nach Vorlage gemacht (https://www.keyhelp.de/news/upgrade-ubu ... ubuntu-20/).
Server läuft jetzt, jedoch nicht mit dem Apache, ergo es ist nicht über die HTTP(S)-Schnittstelle erreichbar.
Es fand ein Update des PHPs statt, von 7.2 auf 7.4.
Folgendes habe ich dann nach Durchsehen der Logs/Forum gemacht:
Erstellen des keyhelp_keyhelp.socket (aus der alten Datei von PHP7.2 generieren lassen)
kroot@server:/run/php# ls
keyhelp_keyhelp.socket php7.4-fpm.pid php7.4-fpm.sock php-fpm.soc
via
Code: Select all
systemctl restart php7.4-fpm.service
Behoben mit[Sat Jul 29 12:30:27.662605 2023] [proxy_fcgi:error] [pid 24333] [client XXX:56783] AH01071: Got error 'PHP message: PHP Parse error: syntax error, unexpected 'ionCube' (T_STRING) in /home/keyhelp/www/keyhelp/index.php on line>
Code: Select all
phpenmod ioncube
Folgendes spricht /var/log/apache2/error.log
Ich weiß gerade nicht weiter. Könnte mir da jemand helfen, bitte?[ N 2023-07-29 12:54:37.3356 4066/T6 age/Cor/CoreMain.cpp:589 ]: Signal received. Gracefully shutting down... (send signal 2 more time(s) to force shutdown)
[ N 2023-07-29 12:54:37.3357 4066/T1 age/Cor/CoreMain.cpp:1080 ]: Received command to shutdown gracefully. Waiting until all clients have disconnected...
[ N 2023-07-29 12:54:37.3357 4066/Ta Ser/Server.h:886 ]: [ApiServer] Freed 0 spare client objects
[ N 2023-07-29 12:54:37.3357 4066/Ta Ser/Server.h:531 ]: [ApiServer] Shutdown finished
[ N 2023-07-29 12:54:37.3358 4066/T6 Ser/Server.h:886 ]: [ServerThr.1] Freed 128 spare client objects
[ N 2023-07-29 12:54:37.3359 4066/T6 Ser/Server.h:531 ]: [ServerThr.1] Shutdown finished
[Sat Jul 29 12:54:37.347812 2023] [ssl:warn] [pid 3414] AH01909: webmail:443:0 server certificate does NOT include an ID which matches the server name
[Sat Jul 29 12:54:37.347949 2023] [ssl:error] [pid 3414] AH02217: ssl_stapling_init_cert: can't retrieve issuer certificate! [subject: emailAddress=info@keyhelp.de,CN=server.irpd.de,OU=KeyHelp Panel,O=KeyHelp,L=Erfurt,ST=Thuringia,C=DE >
[Sat Jul 29 12:54:37.347961 2023] [ssl:error] [pid 3414] AH02604: Unable to configure certificate webmail:443:0 for stapling
[Sat Jul 29 12:54:37.349663 2023] [http2:warn] [pid 3414] AH10034: The mpm module (prefork.c) is not supported by mod_http2. The mpm determines how things are processed in your server. HTTP/2 has more demands in this regard and the curr>
[ N 2023-07-29 12:54:37.3571 4066/T1 age/Cor/CoreMain.cpp:1150 ]: Passenger core shutdown finished
[ N 2023-07-29 12:54:37.3610 4128/T1 age/Wat/WatchdogMain.cpp:1267 ]: Starting Passenger watchdog...
[ N 2023-07-29 12:54:37.3699 4131/T1 age/Cor/CoreMain.cpp:1165 ]: Starting Passenger core...
[ N 2023-07-29 12:54:37.3701 4131/T1 age/Cor/CoreMain.cpp:249 ]: Passenger core running in multi-application mode.
[ W 2023-07-29 12:54:37.3744 4131/T1 age/Cor/CoreMain.cpp:897 ]: WARNING: potential privilege escalation vulnerability. Passenger is running as root, and part(s) of the passenger root path (/usr/local/rvm/gems/ruby-2.4.1/gems/passenger->
The path "/usr/local/rvm/gems/ruby-2.4.1/gems" can be modified by user "XXX" (or applications running as that user). Change the owner of the path to root, or avoid running Passenger as root.
The path "/usr/local/rvm/gems/ruby-2.4.1" can be modified by user "XXX" (or applications running as that user). Change the owner of the path to root, or avoid running Passenger as root.
The path "/usr/local/rvm/gems" can be modified by user "XXX" (or applications running as that user). Change the owner of the path to root, or avoid running Passenger as root.
The path "/usr/local/rvm" can be modified by user "www-data" (or applications running as that user). Change the owner of the path to root, or avoid running Passenger as root.
[ N 2023-07-29 12:54:37.3745 4131/T1 age/Cor/CoreMain.cpp:905 ]: Passenger core online, PID 4131
[Sat Jul 29 12:54:37.401070 2023] [mpm_prefork:notice] [pid 3414] AH00163: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1f Phusion_Passenger/5.1.11 configured -- resuming normal operations
[Sat Jul 29 12:54:37.401090 2023] [core:notice] [pid 3414] AH00094: Command line: '/usr/sbin/apache2'
[ E 2023-07-29 12:54:39.4605 4131/T8 age/Cor/SecurityUpdateChecker.h:376 ]: A security update is available for your version (5.1.11) of Passenger, we strongly recommend upgrading to version 6.0.18.
[ E 2023-07-29 12:54:39.4605 4131/T8 age/Cor/SecurityUpdateChecker.h:381 ]: Additional information:
- [Fixed in 5.3.2] [CVE-2018-12026, 12027, and 12028] These are local denial of service, local information disclosure and local privilege escalation vulnerabilities that could be exploited by malicious applications or malicious users on>
- [Fixed in 6.0.14] [CVE-2018-25032] zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.
- [Fixed in 6.0.14] A use after free memory safety issue was introduced in 6.0.12, and fixed in 6.0.14.
Vielen Dank.
Grüße Robin