DEDIBOX-NEWS.COM
Le Forum Non Officiel de la DEDIBOX
Vous n'êtes pas identifié.
#1 2008-06-05 10:04:36
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Urgent Apache je n'accede plus au site
Bonjour,
J'ai un soucis depuis que le support Dedibox m'ont paramétré le DNS (A, CNAME, ...)
j'ai une redirection sur 88.xx.xx.xx sur www.entreprise.com et entreprise.com
Erreur : Lorsque je vais sur http://entreprise.com >> Erreur 400
Lorsque je vais sur http://www.entreprise.com >> Erreur 500
Lorsque je vais sur https://entreprise.com >> il m'affiche une page "----"
Lorsque je vais sur https://www.entreprise.com >> il me propose de telecharger mon fichier index.php
J'ai fait un
/etc/init.d/apache2 force-reload
Code:
* Forcing reload of apache 2.0 web server... (13): make_sock: could not bind to address 0.0.0.0:443 no listening sockets available, shutting down Unable to open logs
si je fais un sudo /etc/init.d/apache2 force-reload
Code:
* Forcing reload of apache 2.0 web server... (98): make_sock: could not bind to address 0.0.0.0:80
no listening sockets available, shutting down
Unable to open logs
[fail]FIchier /etc/hosts
Code:
88.xx.xx.xx www.entreprise.com entreprise.com
Fichier /etc/apache2/sites-enabled/ssl
Code:
NameVirtualHost 88.xx.xx.xx:443
<VirtualHost 88.xx.xx.xx:443>
ServerAdmin informatique@entreprise.fr
DocumentRoot /home/entreprise/public_html
ServerName entreprise.com
ServerAlias www.entreprise.com entreprise.com
SSLEngine On
SSLCertificateFile /etc/apache2/ssl/apache.pem
.....
.....
.....Fichier /etc/apache2/sites-enabled/000-default
Code:
NameVirtualHost 88.xx.xx.xx:80
<VirtualHost 88.xx.xx.xx:80>
ServerAdmin informatique@entreprise.fr
ServerName entreprise.com
ServerAlias www.entreprise.com entreprise.com
DocumentRoot /var/www
<Directory />
...
...
.../etc/apache2/apache2.conf
Code:
ServerRoot "/etc/apache2"
# The LockFile directive sets the path to the lockfile used when Apache
# is compiled with either USE_FCNTL_SERIALIZED_ACCEPT or
# USE_FLOCK_SERIALIZED_ACCEPT. This directive should normally be left at
# its default value. The main reason for changing it is if the logs
# directory is NFS mounted, since the lockfile MUST BE STORED ON A LOCAL
# DISK. The PID of the main server process is automatically appended to
# the filename.
LockFile /var/lock/apache2/accept.lock
# PidFile: The file in which the server should record its process
# identification number when it starts.
PidFile /var/run/apache2.pid
# Timeout: The number of seconds before receives and sends time out.
Timeout 300
# KeepAlive: Whether or not to allow persistent connections (more than
# one request per connection). Set to "Off" to deactivate.
KeepAlive On
# MaxKeepAliveRequests: The maximum number of requests to allow
# during a persistent connection. Set to 0 to allow an unlimited amount.
# We recommend you leave this number high, for maximum performance.
MaxKeepAliveRequests 100
# KeepAliveTimeout: Number of seconds to wait for the next request from the
# same client on the same connection.
KeepAliveTimeout 15
##
## Server-Pool Size Regulation (MPM specific)
##
# prefork MPM
# StartServers ......... number of server processes to start
# MinSpareServers ...... minimum number of server processes which are kept spare
# MaxSpareServers ...... maximum number of server processes which are kept spare
# MaxClients ........... maximum number of server processes allowed to start
# MaxRequestsPerChild .. maximum number of requests a server process serves
<IfModule prefork.c>
StartServers 5
MinSpareServers 5
MaxSpareServers 10
MaxClients 20
MaxRequestsPerChild 0
</IfModule>
# pthread MPM
# StartServers ......... initial number of server processes to start
# MaxClients ........... maximum number of server processes allowed to start
# MinSpareThreads ...... minimum number of worker threads which are kept spare
# MaxSpareThreads ...... maximum number of worker threads which are kept spare
# ThreadsPerChild ...... constant number of worker threads in each server process
# MaxRequestsPerChild .. maximum number of requests a server process serves
<IfModule worker.c>
StartServers 2
MaxClients 150
MinSpareThreads 25
MaxSpareThreads 75
ThreadsPerChild 25
MaxRequestsPerChild 0
</IfModule>
# perchild MPM
# NumServers ........... constant number of server processes
# StartThreads ......... initial number of worker threads in each server process
# MinSpareThreads ...... minimum number of worker threads which are kept spare
# MaxSpareThreads ...... maximum number of worker threads which are kept spare
# MaxThreadsPerChild ... maximum number of worker threads in each server process
# MaxRequestsPerChild .. maximum number of connections per server process (then it dies)
<IfModule perchild.c>
NumServers 5
StartThreads 5
MinSpareThreads 5
MaxSpareThreads 10
MaxThreadsPerChild 20
MaxRequestsPerChild 0
AcceptMutex fcntl
</IfModule>
User www-data
Group www-data
# The following directives define some format nicknames for use with
# a CustomLog directive (see below).
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t \"%r\" %>s %b" common
LogFormat "%{Referer}i -> %U" referer
LogFormat "%{User-agent}i" agent
# Global error log.
ErrorLog /var/log/apache2/error.log
# Include module configuration:
Include /etc/apache2/mods-enabled/*.load
Include /etc/apache2/mods-enabled/*.conf
# Include all the user configurations:
Include /etc/apache2/httpd.conf
# Include ports listing
Include /etc/apache2/ports.conf
# Include generic snippets of statements
Include /etc/apache2/conf.d/[^.#]*
#Let's have some Icons, shall we?
Alias /icons/ "/usr/share/apache2/icons/"
<Directory "/usr/share/apache2/icons">
Options Indexes MultiViews
AllowOverride None
Order allow,deny
Allow from all
</Directory>
# Set up the default error docs.
#
# Customizable error responses come in three flavors:
# 1) plain text 2) local redirects 3) external redirects
#
# Some examples:
#ErrorDocument 500 "The server made a boo boo."
#ErrorDocument 404 /missing.html
#ErrorDocument 404 "/cgi-bin/missing_handler.pl"
#ErrorDocument 402 http://www.example.com/subscription_info.html
#
#
# Putting this all together, we can Internationalize error responses.
#
# We use Alias to redirect any /error/HTTP_<error>.html.var response to
# our collection of by-error message multi-language collections. We use
# includes to substitute the appropriate text.
#
# You can modify the messages' appearance without changing any of the
# default HTTP_<error>.html.var files by adding the line;
#
# Alias /error/include/ "/your/include/path/"
#
# which allows you to create your own set of files by starting with the
# /usr/local/apache2/error/include/ files and
# copying them to /your/include/path/, even on a per-VirtualHost basis.
#
<IfModule mod_negotiation.c>
<IfModule mod_include.c>
Alias /error/ "/usr/share/apache2/error/"
<Directory "/usr/share/apache2/error">
AllowOverride None
Options IncludesNoExec
AddOutputFilter Includes html
AddHandler type-map var
Order allow,deny
Allow from all
LanguagePriority en es de fr
ForceLanguagePriority Prefer Fallback
</Directory>
ErrorDocument 400 /error/HTTP_BAD_REQUEST.html.var
ErrorDocument 401 /error/HTTP_UNAUTHORIZED.html.var
ErrorDocument 403 /error/HTTP_FORBIDDEN.html.var
ErrorDocument 404 /error/HTTP_NOT_FOUND.html.var
ErrorDocument 405 /error/HTTP_METHOD_NOT_ALLOWED.html.var
ErrorDocument 408 /error/HTTP_REQUEST_TIME_OUT.html.var
ErrorDocument 410 /error/HTTP_GONE.html.var
ErrorDocument 411 /error/HTTP_LENGTH_REQUIRED.html.var
ErrorDocument 412 /error/HTTP_PRECONDITION_FAILED.html.var
ErrorDocument 413 /error/HTTP_REQUEST_ENTITY_TOO_LARGE.html.var
ErrorDocument 414 /error/HTTP_REQUEST_URI_TOO_LARGE.html.var
ErrorDocument 415 /error/HTTP_SERVICE_UNAVAILABLE.html.var
ErrorDocument 500 /error/HTTP_INTERNAL_SERVER_ERROR.html.var
ErrorDocument 501 /error/HTTP_NOT_IMPLEMENTED.html.var
ErrorDocument 502 /error/HTTP_BAD_GATEWAY.html.var
ErrorDocument 503 /error/HTTP_SERVICE_UNAVAILABLE.html.var
ErrorDocument 506 /error/HTTP_VARIANT_ALSO_VARIES.html.var
</IfModule>
</IfModule>
DirectoryIndex index.html index.cgi index.pl index.php index.xhtml
# UserDir is now a module
#UserDir public_html
#UserDir disabled root
#<Directory /home/*/public_html>
# AllowOverride FileInfo AuthConfig Limit
# Options Indexes SymLinksIfOwnerMatch IncludesNoExec
#</Directory>
AccessFileName .htaccess
#<Files ~ "^\.ht">
# Order allow,deny
#
# Deny from all
#</Files>
UseCanonicalName Off
TypesConfig /etc/mime.types
DefaultType text/plain
HostnameLookups Off
IndexOptions FancyIndexing VersionSort
AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
AddIconByType (TXT,/icons/text.gif) text/*
AddIconByType (IMG,/icons/image2.gif) image/*
AddIconByType (SND,/icons/sound2.gif) audio/*
AddIconByType (VID,/icons/movie.gif) video/*
# This really should be .jpg.
AddIcon /icons/binary.gif .bin .exe
AddIcon /icons/binhex.gif .hqx
AddIcon /icons/tar.gif .tar
AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
AddIcon /icons/a.gif .ps .ai .eps
AddIcon /icons/layout.gif .html .shtml .htm .pdf
AddIcon /icons/text.gif .txt
AddIcon /icons/c.gif .c
AddIcon /icons/p.gif .pl .py
AddIcon /icons/f.gif .for
AddIcon /icons/dvi.gif .dvi
AddIcon /icons/uuencoded.gif .uu
AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
AddIcon /icons/tex.gif .tex
AddIcon /icons/bomb.gif core
AddIcon /icons/back.gif ..
AddIcon /icons/hand.right.gif README
AddIcon /icons/folder.gif ^^DIRECTORY^^
AddIcon /icons/blank.gif ^^BLANKICON^^
# This is from Matty J's patch. Anyone want to make the icons?
#AddIcon /icons/dirsymlink.jpg ^^SYMDIR^^
#AddIcon /icons/symlink.jpg ^^SYMLINK^^
DefaultIcon /icons/unknown.gif
ReadmeName README.html
HeaderName HEADER.html
IndexIgnore .??* *~ *# HEADER* RCS CVS *,t
AddEncoding x-compress Z
AddEncoding x-gzip gz tgz
AddLanguage da .dk
AddLanguage nl .nl
AddLanguage en .en
AddLanguage et .et
AddLanguage fr .fr
AddLanguage de .de
AddLanguage el .el
AddLanguage pt-br .pt-br
AddLanguage ltz .ltz
AddLanguage ca .ca
AddLanguage es .es
AddLanguage sv .se
AddLanguage cz .cz
AddLanguage ru .ru
AddLanguage tw .tw
AddLanguage zh-tw .tw
LanguagePriority en da nl et fr de el it ja ko no pl pt pt-br ltz ca es sv tw
#AddDefaultCharset ISO-8859-1
AddCharset ISO-8859-1 .iso8859-1 .latin1
AddCharset ISO-8859-2 .iso8859-2 .latin2 .cen
AddCharset ISO-8859-3 .iso8859-3 .latin3
AddCharset ISO-8859-4 .iso8859-4 .latin4
AddCharset ISO-8859-5 .iso8859-5 .latin5 .cyr .iso-ru
AddCharset ISO-8859-6 .iso8859-6 .latin6 .arb
AddCharset ISO-8859-7 .iso8859-7 .latin7 .grk
AddCharset ISO-8859-8 .iso8859-8 .latin8 .heb
AddCharset ISO-8859-9 .iso8859-9 .latin9 .trk
AddCharset ISO-2022-JP .iso2022-jp .jis
AddCharset ISO-2022-KR .iso2022-kr .kis
AddCharset ISO-2022-CN .iso2022-cn .cis
AddCharset Big5 .Big5 .big5
# For russian, more than one charset is used (depends on client, mostly):
AddCharset WINDOWS-1251 .cp-1251 .win-1251
AddCharset CP866 .cp866
AddCharset KOI8-r .koi8-r .koi8-ru
AddCharset KOI8-ru .koi8-uk .ua
AddCharset ISO-10646-UCS-2 .ucs2
AddCharset ISO-10646-UCS-4 .ucs4
AddCharset UTF-8 .utf8
AddCharset GB2312 .gb2312 .gb
AddCharset utf-7 .utf7
AddCharset utf-8 .utf8
AddCharset big5 .big5 .b5
AddCharset EUC-TW .euc-tw
AddCharset EUC-JP .euc-jp
AddCharset EUC-KR .euc-kr
AddCharset shift_jis .sjis
#AddType application/x-httpd-php .php
#AddType application/x-httpd-php-source .phps
AddType application/x-tar .tgz
# To use CGI scripts outside /cgi-bin/:
#
#AddHandler cgi-script .cgi
# To use server-parsed HTML files
<FilesMatch "\.shtml(\..+)?$">
SetOutputFilter INCLUDES
</FilesMatch>
# If you wish to use server-parsed imagemap files, use
#
#AddHandler imap-file map
BrowserMatch "Mozilla/2" nokeepalive
BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
BrowserMatch "RealPlayer 4\.0" force-response-1.0
BrowserMatch "Java/1\.0" force-response-1.0
BrowserMatch "JDK/1\.0" force-response-1.0
#
# The following directive disables redirects on non-GET requests for
# a directory that does not include the trailing slash. This fixes a
# problem with Microsoft WebFolders which does not appropriately handle
# redirects for folders with DAV methods.
#
BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully
BrowserMatch "^WebDrive" redirect-carefully
BrowserMatch "^gnome-vfs" redirect-carefully
BrowserMatch "^WebDAVFS/1.[012]" redirect-carefully
# Allow server status reports, with the URL of http://servername/server-status
# Change the ".your_domain.com" to match your domain to enable.
#
#<Location /server-status>
# SetHandler server-status
# Order deny,allow
# Deny from all
# Allow from .your_domain.com
#</Location>
# Allow remote server configuration reports, with the URL of
# http://servername/server-info (requires that mod_info.c be loaded).
# Change the ".your_domain.com" to match your domain to enable.
#
#<Location /server-info>
# SetHandler server-info
# Order deny,allow
# Deny from all
# Allow from .your_domain.com
#</Location>
# Include the virtual host configurations:
Include /etc/apache2/sites-enabled/[^.#]*commande ps -ef
Code:
root 1 0 0 09:43 ? 00:00:00 /sbin/init splash root 2 1 0 09:43 ? 00:00:00 [ksoftirqd/0] root 3 1 0 09:43 ? 00:00:00 [events/0] root 4 1 0 09:43 ? 00:00:00 [khelper] root 5 1 0 09:43 ? 00:00:00 [kthread] root 8 5 0 09:43 ? 00:00:00 [kblockd/0] root 10 5 0 09:43 ? 00:00:00 [kseriod] root 71 5 0 09:43 ? 00:00:00 [pdflush] root 72 5 0 09:43 ? 00:00:00 [pdflush] root 73 5 0 09:43 ? 00:00:00 [kswapd0] root 74 5 0 09:43 ? 00:00:00 [aio/0] root 75 5 0 09:43 ? 00:00:00 [jfsIO] root 76 5 0 09:43 ? 00:00:00 [jfsCommit] root 77 5 0 09:43 ? 00:00:00 [jfsSync] root 78 5 0 09:43 ? 00:00:00 [xfslogd/0] root 79 5 0 09:43 ? 00:00:00 [xfsdatad/0] root 689 5 0 09:43 ? 00:00:00 [ata/0] root 690 5 0 09:43 ? 00:00:00 [ata_aux] root 692 5 0 09:43 ? 00:00:00 [scsi_eh_0] root 693 5 0 09:43 ? 00:00:00 [scsi_eh_1] root 721 5 0 09:43 ? 00:00:00 [kcryptd/0] root 730 5 0 09:43 ? 00:00:00 [kjournald] root 738 1 0 09:43 ? 00:00:00 //sbin/logd root 874 1 0 09:43 ? 00:00:00 /sbin/udevd --daemon root 1812 5 0 09:43 ? 00:00:00 [kjournald] root 2084 1 0 09:43 tty1 00:00:00 /sbin/getty 38400 tty1 root 2085 1 0 09:43 tty2 00:00:00 /sbin/getty 38400 tty2 root 2086 1 0 09:43 tty3 00:00:00 /sbin/getty 38400 tty3 root 2087 1 0 09:43 tty4 00:00:00 /sbin/getty 38400 tty4 root 2088 1 0 09:43 tty5 00:00:00 /sbin/getty 38400 tty5 root 2089 1 0 09:43 tty6 00:00:00 /sbin/getty 38400 tty6 root 2113 1 0 09:43 ? 00:00:00 /sbin/syslogd root 2130 1 0 09:43 ? 00:00:00 /bin/dd bs 1 if /proc/kmsg of /var/run/klogd/kmsg klog 2132 1 0 09:43 ? 00:00:00 /sbin/klogd -P /var/run/klogd/kmsg root 2167 1 0 09:43 ? 00:00:00 /bin/sh /usr/bin/mysqld_safe mysql 2231 2167 0 09:43 ? 00:00:00 /usr/sbin/mysqld --basedir=/usr --datadir=/var/lib/mysql --user=mysql --pid-file=/var/run/mysqld/mysqld.pid - root 2232 2167 0 09:43 ? 00:00:00 logger -p daemon.err -t mysqld_safe -i -t mysqld 109 2326 1 0 09:43 ? 00:00:00 /usr/sbin/exim4 -bd -q30m root 2394 1 0 09:43 ? 00:00:00 /usr/sbin/sshd root 2427 1 0 09:43 ? 00:00:00 /sbin/mdadm --monitor --pid-file /var/run/mdadm.pid --mail root --daemonise --scan nobody 2445 1 0 09:43 ? 00:00:00 proftpd: (accepting connections) daemon 2461 1 0 09:43 ? 00:00:00 /usr/sbin/atd root 2471 1 0 09:43 ? 00:00:00 /usr/sbin/cron root 2491 1 0 09:43 ? 00:00:00 /usr/sbin/apache www-data 2492 2491 0 09:43 ? 00:00:00 /usr/sbin/apache www-data 2493 2491 0 09:43 ? 00:00:00 /usr/sbin/apache www-data 2494 2491 0 09:43 ? 00:00:00 /usr/sbin/apache www-data 2495 2491 0 09:43 ? 00:00:00 /usr/sbin/apache www-data 2496 2491 0 09:43 ? 00:00:00 /usr/sbin/apache root 2529 1 0 09:43 ? 00:00:00 /usr/bin/python /usr/bin/fail2ban root 2643 2394 0 09:46 ? 00:00:00 sshd: entreprise [priv] entreprise 2647 2643 0 09:47 ? 00:00:00 sshd: entreprise @pts/0 entreprise 2648 2647 0 09:47 pts/0 00:00:00 -bash www-data 2665 2491 0 09:48 ? 00:00:00 /usr/sbin/apache entreprise 2862 2648 0 10:01 pts/0 00:00:00 ps -ef
Dernière modification par PsYKrO (2008-06-05 10:07:34)
Hors ligne
#2 2008-06-05 10:26:04
Re: Urgent Apache je n'accede plus au site
J'ai pas le temps de regarder la mais les deux premier lien marchez chez moi, sinon impossible pour le https 
Hors ligne
#3 2008-06-05 10:28:59
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Re: Urgent Apache je n'accede plus au site
ce n'est pas les vrais lien
Hors ligne
#5 2008-06-05 10:40:19
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Re: Urgent Apache je n'accede plus au site
héhé 
par contre c'est un site du boulot c'est pour ça que je donne pas les vrais liens (pour ne pas subir des test de plaisantin) et c'est pour ça que c'est urgent !
Je n'arrive pas en m'en defaire....
Hors ligne
#6 2008-06-05 10:43:20
Re: Urgent Apache je n'accede plus au site
Je me disais aussi mais vu que il y avait bien les erreur sur les deux dernière pages ^^
Hors ligne
#7 2008-06-05 10:51:35
Re: Urgent Apache je n'accede plus au site
Arrete apache, et regarde si rien n'occupe le port 80/443
Code:
netstat -n |grep 80 netstat -n |grep 443
Regarde aussi s'ils sont pas fermés dans iptables
use Mozilla::Firefox;
open($your_mind) or die();
Hors ligne
#8 2008-06-05 10:55:56
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Re: Urgent Apache je n'accede plus au site
netstat -n |grep 80
tcp 0 936 88.xx.xx.xx:22 212.234.180.192:40070 ESTABLISHED
tcp 0 1 88.xx.xx.xx:22 217.172.180.138:50184 FIN_WAIT1
netstat -n |grep 443
Rien
Hors ligne
#10 2008-06-05 11:10:01
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Re: Urgent Apache je n'accede plus au site
oui ...c'est ça le pire et j'ai mis en place fail2ban et iptables...
mais malgré un reboot de la dedibox je n'ai toujours plus acces au site ...
Hors ligne
#11 2008-06-05 12:03:47
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Re: Urgent Apache je n'accede plus au site
en fait c'était un probleme de droit sur les fichier logs :
j'ai fait un
chown www-data:www-data -R /var/log/apache2
Hors ligne
#12 2008-06-05 14:03:03
Re: Urgent Apache je n'accede plus au site
chown -R root:adm /var/log/apache2/
Les gens normaux... croient que si ça marche, c'est qu'il n'y a rien à réparer.
Les ingénieurs croient que si ça marche, c'est que ça ne fait pas encore assez de choses.
Hors ligne
#13 2008-06-05 14:10:15
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Re: Urgent Apache je n'accede plus au site
??
Hors ligne
#14 2008-06-05 14:14:09
Re: Urgent Apache je n'accede plus au site
Les bons droits sont root:adm.
Du moins, ce sont ceux par défaut.
Code:
loopiz@lea:~$ l /var/log/apache2/ total 120 -rw-r----- 1 root adm 38359 2008-06-05 13:45 access.log -rw-r----- 1 root adm 75184 2008-06-05 13:45 error.log -rw-r----- 1 root adm 0 2008-03-16 06:25 suexec.log
Dernière modification par Mogui (2008-06-05 14:16:12)
Les gens normaux... croient que si ça marche, c'est qu'il n'y a rien à réparer.
Les ingénieurs croient que si ça marche, c'est que ça ne fait pas encore assez de choses.
Hors ligne
#15 2008-06-05 14:20:54
- PsYKrO
- Membre
- Date d'inscription: 2008-05-27
- Messages: 22
Re: Urgent Apache je n'accede plus au site
mmmm je vais essayé mais je vais pas le faire dessuite...
Je laisse à mes sous traitant de bosser..;
Hors ligne