[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#425248: marked as done (apache2.2-common: apache2 may be killed by logrotate job)

Your message dated Wed, 15 Aug 2007 22:01:20 +0000
with message-id <E1ILQvY-0004Ot-5v@ries.debian.org>
and subject line Bug#298689: fixed in apache2 2.2.3-4+etch1
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message --- 
Package: apache2.2-common
Version: 2.2.3-4
Severity: normal

There are two differents problems, in /etc/init.d/apache2 restart 
function you use sleep 10 between start and stop, but 10 seconds is not 
enough in the case where some childs cannot be killed easily. So it tries 
to stop the server, and tries to start it before it is stopped so it is 
not able to start the server. This is not very important if no script are 
calling restart.

But /etc/logrotate.d/apache2 does. A good idea should be to use reload 
instead of restart. In the first case you may kill legitimate process and 
you do at least ten seconds of service outage (or more if the server 
doesn't restart...) which may be very bad on high availability services, 
in the second case you may loose some lines of logs and it's all.

(needless to say that this happened to me several times)

It may be an easy DOS attack, you just have to overload an apache server 
at 6:25 AM, with the overload it is going to take more than 10 seconds to 
stop and it will not restart, enjoy !

-- System Information:
Debian Release: 4.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.21.1-grsec
Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15)

Versions of packages apache2.2-common depends on:
ii  apache2-utils                2.2.3-4     utility programs for webservers
ii  libmagic1                    4.17-5etch1 File type determination library us
ii  lsb-base                     3.1-23.1    Linux Standard Base 3.1 init scrip
ii  mime-support                 3.39-1      MIME files 'mime.types' & 'mailcap
ii  net-tools                    1.60-17     The NET-3 networking toolkit
ii  procps                       1:3.2.7-3   /proc file system utilities

apache2.2-common recommends no packages.

-- no debconf information

--- End Message ---
--- Begin Message --- 
Source: apache2
Source-Version: 2.2.3-4+etch1

We believe that the bug you reported is fixed in the latest version of
apache2, which is due to be installed in the Debian FTP archive:

apache2-doc_2.2.3-4+etch1_all.deb
  to pool/main/a/apache2/apache2-doc_2.2.3-4+etch1_all.deb
apache2-mpm-event_2.2.3-4+etch1_i386.deb
  to pool/main/a/apache2/apache2-mpm-event_2.2.3-4+etch1_i386.deb
apache2-mpm-perchild_2.2.3-4+etch1_all.deb
  to pool/main/a/apache2/apache2-mpm-perchild_2.2.3-4+etch1_all.deb
apache2-mpm-prefork_2.2.3-4+etch1_i386.deb
  to pool/main/a/apache2/apache2-mpm-prefork_2.2.3-4+etch1_i386.deb
apache2-mpm-worker_2.2.3-4+etch1_i386.deb
  to pool/main/a/apache2/apache2-mpm-worker_2.2.3-4+etch1_i386.deb
apache2-prefork-dev_2.2.3-4+etch1_i386.deb
  to pool/main/a/apache2/apache2-prefork-dev_2.2.3-4+etch1_i386.deb
apache2-src_2.2.3-4+etch1_all.deb
  to pool/main/a/apache2/apache2-src_2.2.3-4+etch1_all.deb
apache2-threaded-dev_2.2.3-4+etch1_i386.deb
  to pool/main/a/apache2/apache2-threaded-dev_2.2.3-4+etch1_i386.deb
apache2-utils_2.2.3-4+etch1_i386.deb
  to pool/main/a/apache2/apache2-utils_2.2.3-4+etch1_i386.deb
apache2.2-common_2.2.3-4+etch1_i386.deb
  to pool/main/a/apache2/apache2.2-common_2.2.3-4+etch1_i386.deb
apache2_2.2.3-4+etch1.diff.gz
  to pool/main/a/apache2/apache2_2.2.3-4+etch1.diff.gz
apache2_2.2.3-4+etch1.dsc
  to pool/main/a/apache2/apache2_2.2.3-4+etch1.dsc
apache2_2.2.3-4+etch1_all.deb
  to pool/main/a/apache2/apache2_2.2.3-4+etch1_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 298689@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Stefan Fritsch <sf@debian.org> (supplier of updated apache2 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 13 Jun 2007 18:27:31 +0200
Source: apache2
Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild
Architecture: source all i386
Version: 2.2.3-4+etch1
Distribution: stable
Urgency: low
Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org>
Changed-By: Stefan Fritsch <sf@debian.org>
Description: 
 apache2    - Next generation, scalable, extendable web server
 apache2-doc - documentation for apache2
 apache2-mpm-event - Event driven model for Apache HTTPD 2.1
 apache2-mpm-perchild - Transitional package - please remove
 apache2-mpm-prefork - Traditional model for Apache HTTPD 2.1
 apache2-mpm-worker - High speed threaded model for Apache HTTPD 2.1
 apache2-prefork-dev - development headers for apache2
 apache2-src - Apache source code
 apache2-threaded-dev - development headers for apache2
 apache2-utils - utility programs for webservers
 apache2.2-common - Next generation, scalable, extendable web server
Closes: 298689 419552 423653
Changes: 
 apache2 (2.2.3-4+etch1) stable; urgency=low
 .
   * Comment out CacheEnable by default, to prevent filling up /var.
     Document the problem in README.Debian and NEWS.Debian, point to
     htcacheclean and give a warning when doing a2enmod disk_cache
     (Closes: #423653).
   * Re-add README.Debian and describe
     - how to change "restart" to "reload" in the logrotate script
       when using SSL keys with passwords
     - the config dir layout (closes: #419552)
     - which files are ignored by Include
   * When doing a restart, wait for the server to die before trying
     to start it again. Together with the README.Debian, this
     closes: #298689 and friends.
   * Ship apache2(8) manpage
Files: 
 34792f0df83aecb13691e10cc4f5b9e9 1068 web optional apache2_2.2.3-4+etch1.dsc
 a8a18f94a3bae3f2a3fd535d25b9c90b 106411 web optional apache2_2.2.3-4+etch1.diff.gz
 e4796541390703313c2c8f11bbe66a95 962158 web optional apache2.2-common_2.2.3-4+etch1_i386.deb
 d63f0d965b50891c3a14c26e9d4b195c 421710 web optional apache2-mpm-worker_2.2.3-4+etch1_i386.deb
 5a9558c5a54c239fea6b2aab76957971 417822 web optional apache2-mpm-prefork_2.2.3-4+etch1_i386.deb
 11a844aee0411c2b4d5f20841c01e74d 422114 web optional apache2-mpm-event_2.2.3-4+etch1_i386.deb
 a5e52a7025f5adaf4227d9f23566273c 341290 web optional apache2-utils_2.2.3-4+etch1_i386.deb
 c2c4f1acc5459534fd67dcf0f3a08fb6 406590 devel optional apache2-prefork-dev_2.2.3-4+etch1_i386.deb
 c74b47ff6d600d7728b1bb09750e5d9e 407244 devel optional apache2-threaded-dev_2.2.3-4+etch1_i386.deb
 fc64d0626d6ae3a7e38ba20c934973bc 272944 web optional apache2-mpm-perchild_2.2.3-4+etch1_all.deb
 7b5520c95f2894a29b538677dd478fa2 39642 web optional apache2_2.2.3-4+etch1_all.deb
 66c83b30e79a43f8e17a9299431ed0d0 2206052 doc optional apache2-doc_2.2.3-4+etch1_all.deb
 bdc56bf0b63cc7993788f60158774fe1 6611572 devel extra apache2-src_2.2.3-4+etch1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFGdkTDbxelr8HyTqQRAiRiAKCFvs07/nIqwm/v+KyBfWXv+3/NaACdEVc8
vPulNmIshVWM2WwSHQ9STzI=
=Lhkd
-----END PGP SIGNATURE-----

--- End Message ---
Reply to: