Dist upgrade safe or not?

Discussion in 'ISPConfig 3 Priority Support' started by SpeedyB, Apr 27, 2015.

  1. SpeedyB

    SpeedyB Member HowtoForge Supporter

    Currently I get the following warning on my systems:

    Code:
    The following packages have been kept back:
      apache2 apache2-mpm-prefork apache2-suexec apache2-utils apache2.2-bin
      apache2.2-common apt apt-utils aptitude aptitude-common base-passwd binutils
      bsdutils build-essential cabextract clamav-base clamav-daemon
      clamav-freshclam cpp cron curl db-util db5.1-util dbus dictionaries-common
      dpkg exiv2 expect fail2ban fakeroot flex g++ gcc gettext ghostscript gnuplot
      gnuplot-nox html2text imagemagick initscripts iproute iptables iputils-ping
      isc-dhcp-client isc-dhcp-common libalgorithm-diff-xs-perl
      libapache2-mod-fastcgi libapache2-mod-fcgid libapache2-mod-php5
      libapache2-modsecurity libaprutil1 libaprutil1-dbd-sqlite3 libaprutil1-ldap
      libapt-pkg-perl libapt-pkg4.12 libasprintf0c2 libauthen-pam-perl
      libberkeleydb-perl libblas3 libcgi-fast-perl libclamav6 libclass-load-perl
      libconvert-uulib-perl libcrypt-openssl-bignum-perl libcrypt-openssl-rsa-perl
      libcups2 libcupsimage2 libcurl3 libcurl3-gnutls libcwidget3
      libdbd-mysql-perl libdbi-perl libdjvulibre21 libept1.4.12 libfcgi-perl
      libfile-fcntllock-perl libgcc1 libgdk-pixbuf2.0-0 libgdk-pixbuf2.0-common
      libgettextpo0 libgfortran3 libglib2.0-0 libgomp1 libgs9 libgs9-common
      libhtml-parser-perl libhttp-message-perl libio-pty-perl
      libio-socket-ssl-perl libitm1 libjasper1 libjson0 libldap-2.4-2
      liblist-moreutils-perl liblocale-gettext-perl liblog-dispatch-perl
      libmailtools-perl libnet-dns-perl libnet-ldap-perl libnet-libidn-perl
      libnet-ssleay-perl libnetaddr-ip-perl libnetpbm10 libopenexr6 libp11-kit0
      libpackage-stash-xs-perl libpam-modules libpam-modules-bin libpam0g
      libpango1.0-0 libpaper1 libparams-classify-perl libparams-util-perl
      libparams-validate-perl libquadmath0 librrd4 librrds-perl librsvg2-2
      librsvg2-common libruby libsasl2-2 libsemanage-common libsemanage1
      libsocket6-perl libssh2-1 libstdc++6 libtext-charwidth-perl
      libtext-iconv-perl libunix-syslog-perl libwmf0.2-7 libxapian22
      libyaml-syck-perl login mc mc-data modsecurity-crs mount munin-node netpbm
      nmap openbsd-inetd openssh-client openssh-server passwd perl perl-base
      perl-modules php-auth php-pear php5 php5-cgi php5-cli php5-common php5-curl
      php5-fpm php5-gd php5-imagick php5-imap php5-mcrypt php5-mysql php5-xcache
      phpmyadmin postfix postfix-mysql procps python python-apt python-minimal
      python2.7 python2.7-minimal quota rsyslog sasl2-bin shared-mime-info
      spamassassin ssh sudo sysv-rc sysvinit sysvinit-utils tcl8.5 ttf-dejavu
      ttf-dejavu-core ttf-dejavu-extra udev ufraw-batch util-linux webalizer wget
    
    Code:
    [email protected]:~# lsb_release -a
    No LSB modules are available.
    Distributor ID:    Debian
    Description:    Debian GNU/Linux 8.0 (jessie)
    Release:    8.0
    Codename:    jessie
    
    Is it safe to run the apt-get Dist-upgrade on these systems?
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    I highly recommend to wait a few weeks to update to a new distribution. I would never update any of my servers right away to a new distro when it comes out. Check your /etc/apt/sources.list file and ensure that it contains wheezy as target distribution and not stable.
     
  3. SpeedyB

    SpeedyB Member HowtoForge Supporter

    Thanks for the answer... But my version is already reporting as version 8 (Jessie) this is not a problem to point to the wheezy updates?
     
  4. till

    till Super Moderator Staff Member ISPConfig Developer

    Ok,so ypou partly updated to Jessie already. In this case, you should finish the update with dist-upgrade. You should take a look at this thread here for some additional details:

    https://www.howtoforge.com/community/threads/ispconfig-3-and-debian-jessie.69834
     
  5. SpeedyB

    SpeedyB Member HowtoForge Supporter

    Thanks for your link... I have run the dist-upgrade..

    Had some troubles. I was using (from 6.0) GNUTLS instead of mod_ssl because I have a certificate with multiple names.
    GNUTLS is not available in the repo.

    Additional command I ran:
    apt-get install libapache2-mod-passenger
    a2enmod ssl
    a2enmod security2

    And I had to reconfigure the services. Is it possible to create a ispconfig_reconfigure script which can do this ;-) instead of downloading the update.php and running that one?
    Everything seems up and running only one update is not installed:

    Only the ClamAV update is not working:
    Code:
    Setting up clamav-daemon (0.98.6+dfsg-1) ...
    /var/lib/dpkg/info/clamav-daemon.postinst: line 626: $DEBCONFILE: ambiguous redirect
    dpkg: error processing package clamav-daemon (--configure):
    subprocess installed post-installation script returned error exit status 1
    Errors were encountered while processing:
    clamav-daemon
    E: Sub-process /usr/bin/dpkg returned an error code (1)
    
     
  6. till

    till Super Moderator Staff Member ISPConfig Developer

    It should be ok to use openssl, I used it already in debian 7 with multi name ssl certs.

    Regarding clamav, you can try to install it with --reinstall option, or try to uninstall it and install it again. At least on a fresh debian 8, I did not had any install problems with clamav, the only problem that I had is that clamd.conf needs to be altered as described in the perfect server tutorial.
     
  7. SpeedyB

    SpeedyB Member HowtoForge Supporter

    Both didn't work :( reinstall or uninstall and install didn't work. The clamd.conf already had the setting configured as described.

    Code:
    [email protected]:~# apt-get install clamav-daemon
    Reading package lists... Done
    Building dependency tree      
    Reading state information... Done
    Suggested packages:
      apparmor
    The following NEW packages will be installed:
      clamav-daemon
    0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
    Need to get 0 B/419 kB of archives.
    After this operation, 898 kB of additional disk space will be used.
    Preconfiguring packages ...
    Selecting previously unselected package clamav-daemon.
    (Reading database ... 94014 files and directories currently installed.)
    Preparing to unpack .../clamav-daemon_0.98.6+dfsg-1_amd64.deb ...
    Unpacking clamav-daemon (0.98.6+dfsg-1) ...
    Processing triggers for man-db (2.7.0.2-5) ...
    Processing triggers for systemd (215-17) ...
    Setting up clamav-daemon (0.98.6+dfsg-1) ...
    /var/lib/dpkg/info/clamav-daemon.postinst: line 626: $DEBCONFILE: ambiguous redirect
    dpkg: error processing package clamav-daemon (--configure):
    subprocess installed post-installation script returned error exit status 1
    Errors were encountered while processing:
    clamav-daemon
    E: Sub-process /usr/bin/dpkg returned an error code (1)
    
     
  8. till

    till Super Moderator Staff Member ISPConfig Developer

  9. SpeedyB

    SpeedyB Member HowtoForge Supporter

    Thanks... I see it is fixed in the next update which is now being pushed around.. I'll try again tonight.

    I found one more issue in the upgrade (fixed it with the perfect server manual)
    The jail.local references a sasl instead of postfix-sasl
     

Share This Page