After updating to 4.3 I cant get httpd to startup. I see no messages in /var/log/message other that httpd failed. I see no errors in /var/log/httpd/error_log there is mention in ssl_error_log that no RSA or DSA certificate is found. I dont know what to do about that.I tried starting in the non fork mode but all it does is give me a prompt no error message . Also of note I am having issue with sshd. It starts up but I cannot connect to the machine. I have been at this for a couple hours now. trying anything... Jerry
On Thu, 2006-03-23 at 01:13 -0500, Jerry Geis wrote:> After updating to 4.3 I cant get httpd to startup. > I see no messages in /var/log/message other that httpd failed. > > I see no errors in /var/log/httpd/error_log > > there is mention in ssl_error_log that no RSA or DSA certificate is found. > I dont know what to do about that.I tried starting in the non fork mode > but all it does is give me a prompt no error message . > > Also of note I am having issue with sshd. It starts up but I cannot connect > to the machine. > > I have been at this for a couple hours now. trying anything... > > JerryPlease look hard at your selinux. I suspect that is where your problems lie if it is turned on. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.centos.org/pipermail/centos/attachments/20060323/f379f931/attachment.bin
Jerry Geis wrote:> After updating to 4.3 I cant get httpd to startup. > I see no messages in /var/log/message other that httpd failed. > > I see no errors in /var/log/httpd/error_log > > there is mention in ssl_error_log that no RSA or DSA certificate is found. > I dont know what to do about that.I tried starting in the non fork mode > but all it does is give me a prompt no error message . > > Also of note I am having issue with sshd. It starts up but I cannot connect > to the machine. > > I have been at this for a couple hours now. trying anything... >remove and reinstall ( does ''rpm -q httpd'' show more than 1 pkg installed ? ) -- Karanbir Singh : http://www.karan.org/ : 2522219@icq
On Thu, 2006-03-23 at 01:13 -0500, Jerry Geis wrote:>/ After updating to 4.3 I cant get httpd to startup./>/ I see no messages in /var/log/message other that httpd failed. />/ />/ I see no errors in /var/log/httpd/error_log />/ />/ there is mention in ssl_error_log that no RSA or DSA certificate is found. />/ I dont know what to do about that.I tried starting in the non fork mode />/ but all it does is give me a prompt no error message . />/ />/ Also of note I am having issue with sshd. It starts up but I cannot connect />/ to the machine. />/ />/ I have been at this for a couple hours now. trying anything... />/ />/ Jerry />Please look hard at your selinux. I suspect that is where your problems >lie if it is turned on.Johnny and all, My selinux is turned off. doing rpm -qa | grep httpd does not show duplicate packages. Is there a way to "freshen" the new packages for 4.3. Kind of a way to reload the packages without SCRAPPING the partition and starting from scratch? just a thought. Is there someway to tell what httpd doesnt like? When I run httpd with options to check config files and things like that it runs an prints a couple lines and prints status OK. So the exe is running just not as a background process. Thanks Jerry
On Thu, 2006-03-23 at 07:35 -0500, Jerry Geis wrote:> On Thu, 2006-03-23 at 01:13 -0500, Jerry Geis wrote: > >/ After updating to 4.3 I cant get httpd to startup. > />/ I see no messages in /var/log/message other that httpd failed. > />/ > />/ I see no errors in /var/log/httpd/error_log > />/ > />/ there is mention in ssl_error_log that no RSA or DSA certificate is found. > />/ I dont know what to do about that.I tried starting in the non fork mode > />/ but all it does is give me a prompt no error message . > />/ > />/ Also of note I am having issue with sshd. It starts up but I cannot connect > />/ to the machine. > />/ > />/ I have been at this for a couple hours now. trying anything... > />/ > />/ Jerry > / > > >Please look hard at your selinux. I suspect that is where your problems > >lie if it is turned on. > > Johnny and all, > > My selinux is turned off. > > doing rpm -qa | grep httpd does not show duplicate packages. > > Is there a way to "freshen" the new packages for 4.3. Kind of a way to reload the > packages without SCRAPPING the partition and starting from scratch? just a thought. > > Is there someway to tell what httpd doesnt like? When I run httpd with options to > check config files and things like that it runs an prints a couple lines and prints > status OK. So the exe is running just not as a background process. > > Thanks > > Jerry >Seems to me that you had a problem generating the ssl keys for this and sshd ... (by what I read before). Removing and reinstalling these pacakges should help. -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.centos.org/pipermail/centos/attachments/20060323/f7cc3022/attachment.bin
On Thu, 2006-03-23 at 07:35 -0500, Jerry Geis wrote:>/ On Thu, 2006-03-23 at 01:13 -0500, Jerry Geis wrote:/>/ >/ After updating to 4.3 I cant get httpd to startup. />/ />/ I see no messages in /var/log/message other that httpd failed. />/ />/ />/ />/ I see no errors in /var/log/httpd/error_log />/ />/ />/ />/ there is mention in ssl_error_log that no RSA or DSA certificate is found. />/ />/ I dont know what to do about that.I tried starting in the non fork mode />/ />/ but all it does is give me a prompt no error message . />/ />/ />/ />/ Also of note I am having issue with sshd. It starts up but I cannot connect />/ />/ to the machine. />/ />/ />/ />/ I have been at this for a couple hours now. trying anything... />/ />/ />/ />/ Jerry />/ / />/ />/ >Please look hard at your selinux. I suspect that is where your problems />/ >lie if it is turned on. />/ />/ Johnny and all, />/ />/ My selinux is turned off. />/ />/ doing rpm -qa | grep httpd does not show duplicate packages. />/ />/ Is there a way to "freshen" the new packages for 4.3. Kind of a way to reload the />/ packages without SCRAPPING the partition and starting from scratch? just a thought. />/ />/ Is there someway to tell what httpd doesnt like? When I run httpd with options to />/ check config files and things like that it runs an prints a couple lines and prints />/ status OK. So the exe is running just not as a background process. />/ />/ Thanks />/ />/ Jerry />/ />Seems to me that you had a problem generating the ssl keys for this and >sshd ... (by what I read before).>Removing and reinstalling these pacakges should help.I removed the httpd and openssh-* and reinstalled - still the same situation. sshd starts but I cannot connect. keys seems to be generated. httpd will not start. Jerry
On 3/23/06, Jerry Geis <geisj@pagestation.com> wrote:> I removed the httpd and openssh-* and reinstalled - still the same situation. > > sshd starts but I cannot connect. keys seems to be generated. httpd will not start.Did you try increasing the log level? The -e flag to httpd will temporarily increase its log level; try "-e info" or "-e debug". Passing one to three "-d" options to sshd will cause it to run in the foreground with debugging. Josh Kelley
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, Mar 23, 2006 at 10:25:54AM -0500, Jerry Geis wrote:> I removed the httpd and openssh-* and reinstalled - still the same > situation. > > sshd starts but I cannot connect. keys seems to be generated. httpd will > not start.Nothing on "dmesg" either ? Even with selinux off, you still can get some problems if the file contexts are missing or way too weird. - -- Rodrigo Barbosa <rodrigob@suespammers.org> "Quid quid Latine dictum sit, altum viditur" "Be excellent to each other ..." - Bill & Ted (Wyld Stallyns) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFEIuW1pdyWzQ5b5ckRAoW0AJ9wZkVRKinVJ2bj82NzTelH62EbsgCcDlKJ q25OFcIPe+s5nryDIl1U054=wPV0 -----END PGP SIGNATURE-----
Jerry Geis wrote on Thu, 23 Mar 2006 07:35:56 -0500:> When I run httpd with options to > check config files and things like that it runs an prints a couple lines and prints > status OKYou mentioned an SSL error message earlier. The configtest parameter unfortunately doesn''t test SSL. All the SSL is in conf.d/ssl.conf, rename it to ssl.conf.stop or whatever you like and try again. Only .conf files are read. Kai -- Kai Sch?tzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com
Kai Schaetzl wrote:> > doesn''t test SSL. All the SSL is in conf.d/ssl.conf, rename it to ssl.conf.stop or > whatever you like and try again. Only .conf files are read.I would not recommend renaming it; instead, edit the file and put a hash (#) in front of all the lines. The reason is that a future upgrade of mod_ssl will install a stock ssl.conf if it''s missing, whereas if it''s present (and commented out) it will remain intact. Same goes for any of the other conf.d/ files (mailman, welcome, etc). I usually comment all of them out and encapsulate the needed code into virtual include files other places, which can then be tracked in version control. -te -- Troy Engel | Systems Engineer Fluid, Inc | http://www.fluid.com
Troy Engel wrote on Thu, 23 Mar 2006 16:51:00 -0800:> I would not recommend renaming it; instead, edit the file and put a hash > (#) in front of all the lines. The reason is that a future upgrade of > mod_ssl will install a stock ssl.conf if it''s missing, whereas if it''s > present (and commented out) it will remain intact.Good advice. I didn''t think about long term, though, just renaming is quickly done and he can get going (if that was the problem) quickly while starting to comment out or actually fix it ... BTW: I''d expect newer config files go to *.rpmnew. I have done too few upgrades on CentOS to know if that expectation is valid. Kai -- Kai Sch?tzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com
Kai Schaetzl wrote:> BTW: I''d expect newer config files go to *.rpmnew. I have done too few > upgrades on CentOS to know if that expectation is valid.Same here, I haven''t really paid attention. I can confirm though that the commented out files are not overwritten, which is what we want. I''d have to poke around on some servers for .rpmnew files. -te -- Troy Engel | Systems Engineer Fluid Inc. | http://www.fluid.com