PDA

View Full Version : Problems after Update #37 - I can't login into Plesk


AlvaroG
Feb 19, 2013, 05:02 AM
After this night update:


Panel version 11.0.9 Update #37
The system is up-to-date; last checked at Feb 19, 2013 05:57 AM

Now I can't login into the admin panel http://domain.com:8443/ but I can do it from server inside logged with SSH and using lynx https://localhost:8443/ but I can't load the configuration sections because lynx doesn't support javascript.

All services seems to work fine, the webs are working but I have started to receive hundred of mails with plesk warnings like:


lfd on domain.com: Suspicious process running under user postfix
lfd on domain.com: Excessive resource usage: apache (7861 (Parent PID:1870))
lfd on domain.com: Excessive resource usage: mysql (14240 (Parent PID:12029))
lfd on domain.com: Excessive resource usage: psaadm (32699 (Parent PID:32676))


# /etc/init.d/psa status
sw-cp-serverd (pid 23589) is running...


# tail -50 /var/log/sw-cp-server/error_log
2013-02-19 10:04:10: (server.c.1543) server stopped by UID = 0 PID = 16131
2013-02-19 10:04:11: (log.c.166) server started
2013-02-19 10:42:34: (server.c.1543) server stopped by UID = 0 PID = 10215
2013-02-19 10:44:08: (log.c.166) server started


# tail /usr/local/psa/admin/logs/httpsd_access_log
127.0.0.1 localhost:8443 - [19/Feb/2013:10:15:43 +0000] "GET /admin/server/tools/ HTTP/1.0" 200 24386 "https://localhost:8443/admin/update/settings/" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:16:01 +0000] "GET /left.php3 HTTP/1.0" 200 19396 "https://localhost:8443/" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:54:13 +0000] "GET / HTTP/1.0" 200 1296 "-" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:54:23 +0000] "GET /login.php3 HTTP/1.0" 303 0 "https://localhost:8443/" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:54:27 +0000] "GET /login_up.php3 HTTP/1.0" 200 4838 "https://localhost:8443/" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:54:49 +0000] "POST /login_up.php3 HTTP/1.0" 200 1266 "https://localhost:8443/login_up.php3" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:55:20 +0000] "GET / HTTP/1.0" 200 1242 "https://localhost:8443/login_up.php3" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:55:25 +0000] "GET /admin/ HTTP/1.0" 302 0 "https://localhost:8443/" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:55:38 +0000] "GET /admin/home HTTP/1.0" 302 0 "https://localhost:8443/" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"
127.0.0.1 localhost:8443 - [19/Feb/2013:10:55:47 +0000] "GET /admin/home/admin HTTP/1.0" 200 18566 "https://localhost:8443/" "Lynx/2.8.5rel.1 libwww-FM/2.14 SSL-MM/1.4.1 OpenSSL/0.9.8e-fips-rhel5"


# tail /usr/local/psa/admin/logs/panel.log
no errors


# /usr/local/psa/bootstrapper/pp11.0.9-bootstrapper/bootstrapper.sh repair
Changing shell for popuser.
Shell not changed.
Changing shell for mhandlers-user.
Shell not changed.
===> Preparing upgrade
mysqldump: Got error: 1049: Unknown database 'horde' when selecting the database
Stopping psa... done
psa is stopped
Stopping psa... done
mysqldump: Got error: 1049: Unknown database 'horde' when selecting the database
===> Cumulative database upgrade has been started
===> Upgrade completed.
mknod: `/var/www/vhosts/chroot/dev/null': File exists
/usr/local/psa/bootstrapper/pp11.0.9-bootstrapper/bootstrapper.sh: line 7781: /usr/local/psa/admin/htdocs/domains/databases/phpMyAdmin/scripts/create_tables.sql: No such file or directory
===> Cumulative upgrade has been started
===> Upgrade completed.
Stopping psa... done
Starting xinetd service... done
Starting mysqld service... done
Starting named service... done
Starting postgresql service... not installed
Starting psa-spamassassin service... not installed
Plesk: Starting Mail Server... already started
Starting psa... done
Starting drwebd service... not installed

Congratulations!
All stages of the upgrade were successful.
psa is now running on your system.
To complete the system configuration process, please proceed to URL:
https://domain.com:8443/ or
https://87.76.29.227:8443/
Use 'admin' and '<YOUR ADMIN PASSWORD>' as login name and password.

Further, use the following commands to start and stop the system:
/etc/init.d/psa start and
/etc/init.d/psa stop respectively.


How can I enable the Plesk login again and stop to receive mails?

Regards,
Lito.

EgidijusS
Feb 19, 2013, 05:42 AM
As I see You using csf. I think first of all check your firewall. Check on which IP is listening plesk service.

AlvaroG
Feb 19, 2013, 05:47 AM
As I see You using csf. I think first of all check your firewall. Check on which IP is listening plesk service.

Yes, I think that is a firewall problem...

How can I do it?

Thanks!

AlvaroG
Feb 19, 2013, 05:55 AM
Also, server can not connect with gmail to send mails using SSL and 465 port from PHP scripts.

Server always response timeout.

Yesterday all services were working fine.

EgidijusS
Feb 19, 2013, 05:57 AM
On RedHat based systems:

/etc/init.d/lfd stop
/etc/init.d/csf stop

after that try to login to panel, if success, look to /etc/csf/csf.conf for:
# Allow incoming TCP ports
TCP_IN = "20,21,22,25,53,80,110,8443" there must be 8443.

AlvaroG
Feb 19, 2013, 06:01 AM
Thanks!

Problem seems a bad Firewall configuration...


# Allow incoming TCP ports
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,2077 ,2078,2082,2083,2086,2087,2095,2096"

# Allow outgoing TCP ports
TCP_OUT = "20,21,22,25,37,43,53,80,110,113,443,587,873,2086,2 087,2089,2703"

# Allow incoming UDP ports
UDP_IN = "20,21,53"

# Allow outgoing UDP ports
# To allow outgoing traceroute add 33434:33523 to this list
UDP_OUT = "20,21,53,113,123,873,6277"

I only need to update the ports and start again the services?

Best regards,
Lito.

EgidijusS
Feb 19, 2013, 06:02 AM
Also, server can not connect with gmail to send mails using SSL and 465 port from PHP scripts.

Server always response timeout.

Yesterday all services were working fine.

For all that look at /etc/csf/csf.conf :

# Allow incoming TCP ports
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,8443" all ports You want to let in, must be here.

AlvaroG
Feb 19, 2013, 06:09 AM
Updated configuration to:


# Allow incoming TCP ports
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,995,2077 ,2078,2082,2083,2086,2087,2095,2096,8443"

# Allow outgoing TCP ports
TCP_OUT = "20,21,22,25,37,43,53,80,110,113,443,465,587,873,20 86,2087,2089,2703"

restarted servers:


# /etc/init.d/lfd start
Starting lfd: [ OK ]
# /etc/init.d/csf start
*WARNING* Since the Virtuozzo VPS iptables ip_conntrack_ftp kernel module is currently broken you have to open a PASV port hole in iptables for incoming FTP connections to work correctly. See the csf readme.txt under 'A note about FTP Connection Issues' on how to do this if you have not already done so.
[ OK ]

All services are working successfully.

Thanks a lot :)
Lito.

EgidijusS
Feb 19, 2013, 06:10 AM
Thanks!

Problem seems a bad Firewall configuration...



I only need to update the ports and start again the services?

Best regards,
Lito.

Yes. Here (http://www.diademblogs.com/linux/csflfd-installation-for-plesk) You can read about configuring CSF on plesk server.

AlvaroG
Feb 19, 2013, 06:18 AM
Yes. Here (http://www.diademblogs.com/linux/csflfd-installation-for-plesk) You can read about configuring CSF on plesk server.

:) added to bookmarks