Fooking scary "upgrade" | |
rich (09:24 26/8/2005) rich (11:03 26/8/2005) andrew (10:40 29/8/2005) rich (13:06 29/8/2005) andrew (16:42 29/8/2005) monkeyson2 (00:13 30/8/2005) rich (08:19 30/8/2005) rich (09:08 31/8/2005) |
|
Richard Goodwin | Message #68646, posted by rich at 09:24, 26/8/2005 |
Dictator for life Posts: 6828 |
Just tried to update PHP due to the latest vulnerability and... nothing. The web server was running, and Perl CGIs ran, but TIB wouldn't return any data due to it being entirely PHP generated. I rebooted the server (that old Windows fallback) but it didn't help, so in the end I had to force the old RPMs back over the upgrade and thankfully it worked! Thank goodness I'd already done the rest of the (fairly trivial) updates because now I'm off for a lie down... ________ Cheers, Rich. |
[ Log in to reply ] | |
Richard Goodwin | Message #68648, posted by rich at 11:03, 26/8/2005, in reply to message #68646 |
Dictator for life Posts: 6828 |
OK, I'm back, and I think I have a working version of ClamAV antivirus up and running! ________ Cheers, Rich. |
[ Log in to reply ] | |
Andrew | Message #68681, posted by andrew at 10:40, 29/8/2005, in reply to message #68648 |
Handbag Boi
Posts: 3439 |
Where is the server located now? Do you still have to go down to docklands? |
[ Log in to reply ] | |
Richard Goodwin | Message #68684, posted by rich at 13:06, 29/8/2005, in reply to message #68681 |
Dictator for life Posts: 6828 |
Where is the server located now? Do you still have to go down to docklands?There's this thing called the Internet, which is, like, accessible without leaving the house and stuff... It's somewhere in London - don't know where though. ________ Cheers, Rich. |
[ Log in to reply ] | |
Andrew | Message #68687, posted by andrew at 16:42, 29/8/2005, in reply to message #68684 |
Handbag Boi
Posts: 3439 |
Where is the server located now? Do you still have to go down to docklands?There's this thing called the Internet, which is, like, accessible without leaving the house and stuff... I wasn't able to determine that from this: "I rebooted the server (that old Windows fallback) but it didn't help, so in the end I had to force the old RPMs back over the upgrade and thankfully it worked" |
[ Log in to reply ] | |
Phil Mellor | Message #68696, posted by monkeyson2 at 00:13, 30/8/2005, in reply to message #68687 |
Please don't let them make me be a monkey butler
Posts: 12380 |
I wasn't able to determine that from this:I have the image now of Rich doing all that, then having to go for a lie down somewhere in London. Possibly with a can of Special Brew. |
[ Log in to reply ] | |
Richard Goodwin | Message #68698, posted by rich at 08:19, 30/8/2005, in reply to message #68687 |
Dictator for life Posts: 6828 |
It's kind of implied from the fact that this is a server that's been announced on the front page as being hosted at a proper hosting facility by Orpheus.Where is the server located now? Do you still have to go down to docklands?There's this thing called the Internet, which is, like, accessible without leaving the house and stuff... ________ Cheers, Rich. |
[ Log in to reply ] | |
Richard Goodwin | Message #68726, posted by rich at 09:08, 31/8/2005, in reply to message #68646 |
Dictator for life Posts: 6828 |
*phew* - and we're back. I've updated both PHP and Apache successfully. (And now Python too - does anyone use this?) The PHP thing was probably to do with not having updated the pcre libraries first - which was dodgy and why all this stuff needs upgrading in the first place. On upgrading apache and all its modules it failed to come back up properly again, but this time the culprit was the SSL module. Seeing as SSL isn't used on the server, and I (thought) I'd already removed it from the module startup directory, it was a bit hairy for a while. But yay for 999 line scroll histories in SSH clients! I could see that previous module upgrades shut down and restarted the server properly; but during the SSL install it wasn't able to shut down (even though it was still reporting a startup). Turns out there were two SSL-related files in the module directory. Reason for update: Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow.As ever, please report any problems you find after this update. ________ Cheers, Rich. |
[ Log in to reply ] | |