View Single Post
  #1  
Old 19th April 2013, 11:31
Nioubee Nioubee is offline
Junior Member
 
Join Date: Nov 2011
Posts: 17
Thanks: 3
Thanked 0 Times in 0 Posts
Default Issues appeared after uninstalling mumble-server-web...

Good morning everyone,

There is now some month that my old ISPConfig server is not running correctly, i tried different solution on the web but didn't find something working.

Basically, like the title said, i've installed mumble server, which installed the mumble-server-web package, everything was working, but a day i wanted to move all my clients except one from this server, so... i uninstalled all un-necessary packages i installed after ISPConfig and it crashed Apache2.

When starting Apache2 i get this :
Code:
root@my_server:/var/log/apache2# /etc/init.d/apache2 start
Starting web server: apache2[Fri Apr 19 10:05:30 2013] [warn] NameVirtualHost 109.203.40.81:80 has no VirtualHosts
[Fri Apr 19 10:05:30 2013] [warn] NameVirtualHost MY.WAN.IP.ADDRESS:443 has no VirtualHosts
[Fri Apr 19 10:05:30 2013] [warn] NameVirtualHost *:443 has no VirtualHosts
[Fri Apr 19 10:05:30 2013] [warn] NameVirtualHost *:80 has no VirtualHosts
(98)Address already in use: make_sock: could not bind to address [::]:80
(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80
no listening sockets available, shutting down
Unable to open logs
Action 'start' failed.
The Apache error log may have more information.
 failed!
The problem is that /var/log/apaache2/error.log is empty ! if i look the the archives the last error is from 1st march..

Ive found on Google this topic : http://www.howtoforge.com/forums/arc...p/t-52247.html

Till suggested a "netstat -tap", this is my output :
Code:
root@my_server_domain_tld:/var/log/apache2# netstat -tap
Connexions Internet actives (serveurs et établies)
Proto Recv-Q Send-Q Adresse locale          Adresse distante        Etat        PID/Program name
tcp        0      0 localhost:spamd         *:*                     LISTEN      1902/spamd.pid
tcp        0      0 *:sunrpc                *:*                     LISTEN      930/portmap
tcp        0      0 *:ftp                   *:*                     LISTEN      21186/pure-ftpd (SE
tcp        0      0 beavernet.hostin:domain *:*                     LISTEN      6599/named
tcp        0      0 localhost:domain        *:*                     LISTEN      6599/named
tcp        0      0 *:munin                 *:*                     LISTEN      8024/munin-node
tcp        0      0 *:5109                  *:*                     LISTEN      1614/istatd
tcp        0      0 *:ssh                   *:*                     LISTEN      4371/sshd
tcp        0      0 localhost:953           *:*                     LISTEN      6599/named
tcp        0      0 *:smtp                  *:*                     LISTEN      5606/master
tcp        0      0 localhost:10024         *:*                     LISTEN      2941/amavisd (ch12-
tcp        0      0 localhost:10025         *:*                     LISTEN      5606/master
tcp        0      0 *:mysql                 *:*                     LISTEN      21065/mysqld
tcp        0      0 *:43370                 *:*                     LISTEN      23754/rpc.statd
tcp        1      0 localhost:45736         localhost:mysql         CLOSE_WAIT  2941/amavisd (ch12-
tcp        0      0 beavernet.hostin:sunrpc 208.234.39.19:743       ESTABLISHED 930/portmap
tcp        1      0 localhost:35888         localhost:mysql         CLOSE_WAIT  3523/amavisd (ch12-
tcp        0     52 beavernet.hosting-v:ssh client125.40.jpne:50973 ESTABLISHED 20245/sshd: blacky
tcp6       0      0 [::]:imap2              [::]:*                  LISTEN      6455/couriertcpd
tcp6       0      0 [::]:http-alt           [::]:*                  LISTEN      7477/apache2
tcp6       0      0 [::]:www                [::]:*                  LISTEN      7477/apache2
tcp6       0      0 [::]:tproxy             [::]:*                  LISTEN      7477/apache2
tcp6       0      0 [::]:ftp                [::]:*                  LISTEN      21186/pure-ftpd (SE
tcp6       0      0 [::]:domain             [::]:*                  LISTEN      6599/named
tcp6       0      0 [::]:ssh                [::]:*                  LISTEN      4371/sshd
tcp6       0      0 ip6-localhost:953       [::]:*                  LISTEN      6599/named
tcp6       0      0 [::]:smtp               [::]:*                  LISTEN      5606/master
tcp6       0      0 [::]:https              [::]:*                  LISTEN      7477/apache2
tcp6       0      0 [::]:imaps              [::]:*                  LISTEN      6472/couriertcpd
tcp6       0      0 [::]:pop3s              [::]:*                  LISTEN      6500/couriertcpd
tcp6       0      0 [::]:pop3               [::]:*                  LISTEN      6483/couriertcpd
tcp6      17      0 beavernet.hostin:tproxy relay.luxoptica.c:51200 CLOSE_WAIT  -
tcp6     224      0 beavernet.host:http-alt relay.luxoptica.c:51196 CLOSE_WAIT  -
tcp6      33      0 beavernet.hosting:https relay.luxoptica.c:51056 CLOSE_WAIT  -
tcp6      10      0 beavernet.hosting:https relay.luxoptica.c:51175 CLOSE_WAIT  -
tcp6      10      0 beavernet.hostin:tproxy relay.luxoptica.c:51183 CLOSE_WAIT  -
tcp6      42      0 beavernet.host:http-alt relay.luxoptica.c:50929 CLOSE_WAIT  -
tcp6      18      0 beavernet.hostin:tproxy relay.luxoptica.c:50906 CLOSE_WAIT  -
tcp6      13      0 beavernet.hosting:https relay.luxoptica.c:50891 CLOSE_WAIT  -
tcp6      45      0 beavernet.hostin:tproxy relay.luxoptica.c:51021 CLOSE_WAIT  -
tcp6      61      0 beavernet.hosting:https relay.luxoptica.c:52708 CLOSE_WAIT  -
tcp6     224      0 beavernet.hosting:https relay.luxoptica.c:51194 CLOSE_WAIT  -
tcp6     154      0 beavernet.hostin:tproxy relay.luxoptica.com:361 CLOSE_WAIT  -
tcp6       9      0 beavernet.hostin:tproxy relay.luxoptica.c:49803 CLOSE_WAIT  -
tcp6      61      0 beavernet.hostin:tproxy relay.luxoptica.c:51230 CLOSE_WAIT  -
tcp6     161      0 beavernet.hosting:https relay.luxoptica.c:50858 CLOSE_WAIT  -
tcp6      91      0 beavernet.host:http-alt relay.luxoptica.c:53097 CLOSE_WAIT  -
tcp6      33      0 beavernet.host:http-alt relay.luxoptica.c:51036 CLOSE_WAIT  -
tcp6      15      0 beavernet.hostin:tproxy relay.luxoptica.c:51191 CLOSE_WAIT  -
tcp6       7      0 beavernet.hosting:https relay.luxoptica.c:51094 CLOSE_WAIT  -
tcp6      13      0 beavernet.host:http-alt relay.luxoptica.c:51170 CLOSE_WAIT  -
tcp6      19      0 beavernet.host:http-alt relay.luxoptica.c:50732 CLOSE_WAIT  -
tcp6      12      0 beavernet.host:http-alt relay.luxoptica.c:51220 CLOSE_WAIT  -
tcp6      24      0 beavernet.hostin:tproxy relay.luxoptica.c:51221 CLOSE_WAIT  -
tcp6      13      0 beavernet.hostin:tproxy relay.luxoptica.c:51174 CLOSE_WAIT  -
tcp6      45      0 beavernet.hosting:https relay.luxoptica.com:630 CLOSE_WAIT  -
tcp6      19      0 beavernet.hosting:https relay.luxoptica.c:50973 CLOSE_WAIT  -
tcp6      15      0 beavernet.hosting:https relay.luxoptica.c:51186 CLOSE_WAIT  -
tcp6     118      0 beavernet.hostin:tproxy relay.luxoptica.c:51150 CLOSE_WAIT  -
tcp6     176      0 beavernet.hostin:tproxy relay.luxoptica.c:55830 CLOSE_WAIT  -
tcp6      14      0 beavernet.host:http-alt relay.luxoptica.c:50962 CLOSE_WAIT  -
tcp6      61      0 beavernet.host:http-alt relay.luxoptica.c:51446 CLOSE_WAIT  -
tcp6     169      0 beavernet.hostin:tproxy relay.luxoptica.c:51161 CLOSE_WAIT  -
tcp6     118      0 beavernet.hosting:https relay.luxoptica.c:51134 CLOSE_WAIT  -
tcp6      89      0 beavernet.hostin:tproxy relay.luxoptica.c:51128 CLOSE_WAIT  -
tcp6      12      0 beavernet.hostin:tproxy relay.luxoptica.c:51209 CLOSE_WAIT  -
tcp6      89      0 beavernet.hosting:https relay.luxoptica.c:50789 CLOSE_WAIT  -
tcp6       7      0 beavernet.host:http-alt relay.luxoptica.c:51079 CLOSE_WAIT  -
tcp6      89      0 beavernet.host:http-alt relay.luxoptica.c:51105 CLOSE_WAIT  -
tcp6       5      0 beavernet.hostin:tproxy relay.luxoptica.c:50939 CLOSE_WAIT  -
tcp6      23      0 beavernet.host:http-alt relay.luxoptica.c:50794 CLOSE_WAIT  -
tcp6       9      0 beavernet.hosting:https relay.luxoptica.c:53938 CLOSE_WAIT  -
tcp6      19      0 beavernet.hostin:tproxy relay.luxoptica.c:50733 CLOSE_WAIT  -
tcp6       7      0 beavernet.hostin:tproxy relay.luxoptica.c:51091 CLOSE_WAIT  -
tcp6     176      0 beavernet.host:http-alt relay.luxoptica.c:55499 CLOSE_WAIT  -
tcp6     153      0 beavernet.hostin:tproxy relay.luxoptica.com:933 CLOSE_WAIT  -
tcp6      19      0 beavernet.hostin:tproxy relay.luxoptica.c:51269 CLOSE_WAIT  -
tcp6      17      0 beavernet.host:http-alt relay.luxoptica.c:51208 CLOSE_WAIT  -
tcp6      45      0 beavernet.hostin:tproxy relay.luxoptica.com:888 CLOSE_WAIT  -
tcp6      17      0 beavernet.hosting:https relay.luxoptica.c:51205 CLOSE_WAIT  -
tcp6      19      0 beavernet.hosting:https relay.luxoptica.com.:96 CLOSE_WAIT  -
tcp6     224      0 beavernet.hostin:tproxy relay.luxoptica.c:50864 CLOSE_WAIT  -
tcp6      33      0 beavernet.hostin:tproxy relay.luxoptica.c:51045 CLOSE_WAIT  -
tcp6      24      0 beavernet.host:http-alt relay.luxoptica.c:51229 CLOSE_WAIT  -
tcp6      15      0 beavernet.host:http-alt relay.luxoptica.c:51188 CLOSE_WAIT  -
tcp6      45      0 beavernet.hosting:https relay.luxoptica.c:51029 CLOSE_WAIT  -
tcp6     442      0 beavernet.hosting:https relay.luxoptica.c:50915 CLOSE_WAIT  -
tcp6      12      0 beavernet.hosting:https relay.luxoptica.c:51213 CLOSE_WAIT  -
tcp6      91      0 beavernet.hostin:tproxy relay.luxoptica.c:61606 CLOSE_WAIT  -
tcp6     176      0 beavernet.hosting:https relay.luxoptica.c:54750 CLOSE_WAIT  -
tcp6      15      0 beavernet.host:http-alt relay.luxoptica.c:51063 CLOSE_WAIT  -
tcp6       5      0 beavernet.host:http-alt relay.luxoptica.c:50987 CLOSE_WAIT  -
tcp6      45      0 beavernet.host:http-alt relay.luxoptica.c:51008 CLOSE_WAIT  -
tcp6      23      0 beavernet.hosting:https relay.luxoptica.c:50728 CLOSE_WAIT  -
tcp6     169      0 beavernet.hosting:https relay.luxoptica.c:51151 CLOSE_WAIT  -
tcp6      54      0 beavernet.hosting:https relay.luxoptica.c:51163 CLOSE_WAIT  -
tcp6      23      0 beavernet.hostin:tproxy relay.luxoptica.c:50969 CLOSE_WAIT  -
tcp6      91      0 beavernet.hosting:https relay.luxoptica.c:61719 CLOSE_WAIT  -
tcp6      10      0 beavernet.host:http-alt relay.luxoptica.c:51178 CLOSE_WAIT  -
tcp6      23      0 beavernet.hosting:https relay.luxoptica.c:51003 CLOSE_WAIT  -
tcp6       5      0 beavernet.hosting:https relay.luxoptica.c:50952 CLOSE_WAIT  -
tcp6       9      0 beavernet.host:http-alt relay.luxoptica.c:56706 CLOSE_WAIT  -
tcp6      19      0 beavernet.host:http-alt relay.luxoptica.c:55784 CLOSE_WAIT  -
tcp6      15      0 beavernet.hostin:tproxy relay.luxoptica.c:51068 CLOSE_WAIT  -
tcp6     118      0 beavernet.host:http-alt relay.luxoptica.c:51138 CLOSE_WAIT  -
tcp6      15      0 beavernet.hosting:https relay.luxoptica.c:51073 CLOSE_WAIT  -
tcp6      54      0 beavernet.host:http-alt relay.luxoptica.c:50901 CLOSE_WAIT  -
tcp6      23      0 beavernet.host:http-alt relay.luxoptica.c:50863 CLOSE_WAIT  -
tcp6      23      0 beavernet.hostin:tproxy relay.luxoptica.c:51002 CLOSE_WAIT  -
tcp6      19      0 beavernet.hosting:https relay.luxoptica.c:62795 CLOSE_WAIT  -
tcp6      24      0 beavernet.hosting:https relay.luxoptica.c:51225 CLOSE_WAIT  -
tcp6      45      0 beavernet.host:http-alt relay.luxoptica.com:215 CLOSE_WAIT  -
tcp6      54      0 beavernet.hostin:tproxy relay.luxoptica.c:50795 CLOSE_WAIT  -
tcp6     169      0 beavernet.host:http-alt relay.luxoptica.c:51156 CLOSE_WAIT  -
Is my server, somewhat, infected by a relay ?

I did too a rootkit check, the result :

Code:
System checks summary
=====================

File properties checks...
    Files checked: 132
    Suspect files: 2

Rootkit checks...
    Rootkits checked : 244
    Possible rootkits: 0

Applications checks...
    All checks skipped

The system checks took: 3 minutes and 40 seconds

All results have been written to the log file (/var/log/rkhunter.log)

One or more warnings have been found while checking the system.
Please check the log file (/var/log/rkhunter.log)



[09:58:37] /usr/bin/perl                                     [ Warning ]
[09:58:37] Warning: The file properties have changed:
[09:58:37]          File: /usr/bin/perl
[09:58:37]          Current hash: 400681f383f4a2b63d4615a8d7ad53c2a685e3da
[09:58:37]          Stored hash : be5055e1642bec794804ebf8668a1554864d218b
[09:58:37]          Current inode: 1848777    Stored inode: 1856355
[09:58:37]          Current file modification time: 1362591932 (06-mar-2013 18:45:32)
[09:58:37]          Stored file modification time : 1361046751 (16-fév-2013 2132:31)


[09:58:41] /usr/bin/sudo                                     [ Warning ]
[09:58:41] Warning: The file properties have changed:
[09:58:41]          File: /usr/bin/sudo
[09:58:41]          Current hash: 26c7d604ed60097726bf82bfa548b7e5639d7dd0
[09:58:41]          Stored hash : 014084e376619d291814cc638891b5d39e559e54
[09:58:41]          Current inode: 1837911    Stored inode: 1838860
[09:58:41]          Current size: 144772    Stored size: 144740
[09:58:41]          Current file modification time: 1362598702 (06-mar-2013 20:38:22)
[09:58:41]          Stored file modification time : 1337794468 (23-mai-2012 19:34:28)
This server is running Debian Squeeze 6.0.7 i386, all services seems to be running from "htop" but apache2 can't be started. This server is still used by a backup (FTP)

Hope someone can help me..
Thanks
Reply With Quote
Sponsored Links