I'm having a problem in Debian Sarge that is getting me mad. Everything runs ok, but from while to while proftpd process gets into state "D" when ispconfig restarts it at 23:59 every night. It happens sometimes from day to day, sometimes lasts one week even 10 days. But sooner or later, I know proftpd will hang and the only solutions is reboot whole machine to get ftp working again. It seems a Debian/proftpd bug (I got it hanged manually restarted), but I post here with the hope someone had this problem before than me (and found a solution I also liked to know if I can try installing vsftp without breaking all the ispconfig installtion. Thank you very much!
so you mean restarting by hand (not from the ipsconfig webinterface) even does not help? Well I did not find any solution except using vsftpd again (but I don't mind because I never need anonymous ftp...) another one having the same problem at the moment told sth. about logrotation....
Even a "kill -9" doesn't work. proftpd process enters "D state": 5 65534 24973 1 16 0 4904 2308 lock_p Ds ? 0:00 proftpd: (accepting connections) and the only way I found (by experimentation, and searching the web) of restarting ftp was rebooting machine. Even an ISPConfig update hanged at the moment of restarting ftp (luckily, it was at the very end of the upgrade, and all was ok after rebooting). I have no (almost) problem in changing proftpd by vsftpd, but I'm not sure if it will break someting else.... Will ISPconfig detect vsftp without problems now that is already installed and running with proftpd? P.S. What do you mean with "...told sth. about logrotation...."?
What's the output of Code: netstat -tap ? What's in /etc/proftpd.conf and /etc/proftpd_ispconfig.conf?
Proftpd.comf: # # /etc/proftpd.conf -- This is a basic ProFTPD configuration file. # To really apply changes reload proftpd after modifications. # ServerName "Servidor FTP de Auria" ServerType standalone DeferWelcome off MultilineRFC2228 on DefaultServer on ShowSymlinks on TimeoutNoTransfer 600 TimeoutStalled 600 TimeoutIdle 1200 DisplayLogin welcome.msg DisplayFirstChdir .message ListOptions "-l" DenyFilter \*.*/ ### Perfect Setup DefaultRoot ~ IdentLookups off ServerIdent on "Servidor FTP de Auria" # Uncomment this if you are using NIS or LDAP to retrieve passwords: #PersistentPasswd off # Uncomment this if you would use TLS module: #TLSEngine on # Uncomment this if you would use quota module: #Quotas on # Uncomment this if you would use ratio module: #Ratios on # Port 21 is the standard FTP port. Port 21 # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd) MaxInstances 30 # Set the user and group that the server normally runs at. User nobody Group nogroup # Umask 022 is a good standard umask to prevent new files and dirs # (second parm) from being group and world writable. Umask 022 022 # Normally, we want files to be overwriteable. AllowOverwrite on # Delay engine reduces impact of the so-called Timing Attack described in # http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02 # It is on by default. #DelayEngine off # A basic anonymous configuration, no upload directories. # <Anonymous ~ftp> # User ftp # Group nogroup # # We want clients to be able to login with "anonymous" as well as "ftp" # UserAlias anonymous ftp # # Cosmetic changes, all files belongs to ftp user # DirFakeUser on ftp # DirFakeGroup on ftp # # RequireValidShell off # # # Limit the maximum number of anonymous logins # MaxClients 10 # # # We want 'welcome.msg' displayed at login, and '.message' displayed # # in each newly chdired directory. # DisplayLogin welcome.msg # DisplayFirstChdir .message # # # Limit WRITE everywhere in the anonymous chroot # <Directory *> # <Limit WRITE> # DenyAll # </Limit> # </Directory> # # # Uncomment this if you're brave. # # <Directory incoming> # # # Umask 022 is a good standard umask to prevent new files and dirs # # # (second parm) from being group and world writable. # # Umask 022 022 # # <Limit READ WRITE> # # DenyAll # # </Limit> # # <Limit STOR> # # AllowAll # # </Limit> # # </Directory> # # </Anonymous> Include /etc/proftpd_ispconfig.conf proftpd_ispconfig.conf: ################################### # # ISPConfig proftpd Configuration File # Version 1.0 # ################################### DefaultAddress 127.0.0.1 <VirtualHost 192.168.0.100> DefaultRoot ~ AllowOverwrite on Umask 002 </VirtualHost> <VirtualHost ww.xx.yy.zz> DefaultRoot ~ AllowOverwrite on Umask 002 </VirtualHost> I'd like also to say that while proftpd doesn't hangs, it works perfectly.
I've got proftpd hanged again at 0:00 Output of "netstat -tap" now is as follows: tcp 0 0 *:ftp *:* LISTEN 14122/proftpd: (acc tcp 0 0 localhost:ftp localhost:52538 ESTABLISHED- tcp 1 0 localhost:ftp localhost:52632 CLOSE_WAIT - tcp 0 0 localhost:52632 localhost:ftp FIN_WAIT2 - tcp 0 0 localhost:52538 localhost:ftp ESTABLISHED20091/php Every process who tries to connect to port 21 hangs with state "CLOSE WAIT"
I don't get any errors, nor in syslog nor in xferlog Following is the difference between a "clean" and a "hanged" restart in syslog: OK: Aug 31 23:59:01 eneri /USR/SBIN/CRON[5873]: (root) CMD (/root/ispconfig/php/php /root/ispconfig/scripts/shell/cleanup.php &> /dev/null) Aug 31 23:59:01 eneri /USR/SBIN/CRON[5876]: (root) CMD (/root/ispconfig/php/php /root/ispconfig/scripts/shell/mail_logs.php &> /dev/null) Aug 31 23:59:01 eneri /USR/SBIN/CRON[5879]: (root) CMD (/root/ispconfig/php/php /root/ispconfig/scripts/shell/ftp_logs.php &> /dev/null) Aug 31 23:59:02 eneri postfix/postfix-script: stopping the Postfix mail system Aug 31 23:59:02 eneri postfix/master[31077]: terminating on signal 15 Aug 31 23:59:02 eneri proftpd[3247]: localhost - ProFTPD killed (signal 15) Aug 31 23:59:02 eneri proftpd[3247]: localhost - ProFTPD 1.2.10 standalone mode SHUTDOWN Aug 31 23:59:02 eneri proftpd[5963]: localhost - ProFTPD 1.2.10 (stable) (built do mrt 22 18:28:32 CET 2001) standalone mode STARTUP Aug 31 23:59:03 eneri postfix/postfix-script: starting the Postfix mail system Aug 31 23:59:03 eneri postfix/master[6155]: daemon started -- version 2.1.5 Not OK: Aug 30 23:59:01 eneri /USR/SBIN/CRON[18079]: (root) CMD (/root/ispconfig/php/php /root/ispconfig/scripts/shell/ftp_logs.php &> /dev/null) Aug 30 23:59:01 eneri /USR/SBIN/CRON[18081]: (root) CMD (/root/ispconfig/php/php /root/ispconfig/scripts/shell/cleanup.php &> /dev/null) Aug 30 23:59:01 eneri /USR/SBIN/CRON[18084]: (root) CMD (/root/ispconfig/php/php /root/ispconfig/scripts/shell/mail_logs.php &> /dev/null) Aug 30 23:59:01 eneri proftpd[14122]: localhost - ProFTPD killed (signal 15) Aug 30 23:59:01 eneri postfix/postfix-script: stopping the Postfix mail system Aug 30 23:59:01 eneri postfix/master[12878]: terminating on signal 15 Aug 30 23:59:02 eneri postfix/postfix-script: starting the Postfix mail system Aug 30 23:59:02 eneri postfix/master[18298]: daemon started -- version 2.1.5 In xferlog all is normal... There's no difference between an "OK" day and a "not OK" one
I've no changed this script as it comes with Debian Sarge: #!/bin/sh # Start the proftpd FTP daemon. PATH=/bin:/usr/bin:/sbin:/usr/sbin DAEMON=/usr/sbin/proftpd NAME=proftpd # Defaults RUN="no" OPTIONS="" PIDFILE=`grep -i 'pidfile' /etc/proftpd.conf | sed -e 's/pidfile[\t ]\+//i'` if [ "x$PIDFILE" = "x" ]; then PIDFILE=/var/run/proftpd.pid fi # Read config (will override defaults) [ -r /etc/default/proftpd ] && . /etc/default/proftpd trap "" 1 trap "" 15 test -f $DAEMON || exit 0 # # Servertype could be inetd|standalone|none. # In all cases check against inetd and xinetd support. # if ! egrep -qi "^[[:space:]]*ServerType.*standalone" /etc/proftpd.conf then if [ $(dpkg-divert --list xinetd|wc -l) -eq 1 ] then if egrep -qi "server[[:space:]]*=[[:space:]]*/usr/sbin/proftpd" /etc/xinetd.conf -o \ egrep -qi "server[[:space:]]*=[[:space:]]*/usr/sbin/proftpd" /etc/xinetd.d/* 2>/dev/null then RUN="no" INETD="yes" else if ! egrep -qi "^[[:space:]]*ServerType.*inetd" /etc/proftpd.conf then RUN="yes" INETD="no" else RUN="no" INETD="no" fi fi else if egrep -qi "^ftp.*/usr/sbin/proftpd" /etc/inetd.conf 2>/dev/null then RUN="no" INETD="yes" else if ! egrep -qi "^[[:space:]]*ServerType.*inetd" /etc/proftpd.conf then RUN="yes" INETD="no" else RUN="no" INETD="no" fi fi fi fi start() { if start-stop-daemon --start --quiet --pidfile "$PIDFILE" \ --exec $DAEMON -- $OPTIONS ; then echo "$NAME." else echo "." fi } signal() { if [ "$1" = "stop" ]; then SIGNAL="TERM" else if [ "$1" = "reload" ]; then SIGNAL="HUP" else echo "ERR: wrong parameter given to signal()" fi fi if start-stop-daemon --stop --signal $SIGNAL --quiet --pidfile "$PIDFILE"; then echo "$NAME." else SIGNAL="KILL" if start-stop-daemon --stop --signal $SIGNAL --quiet --pidfile "$PIDFILE"; then echo "$NAME." else echo "." fi fi if [ "$SIGNAL" = "KILL" ]; then rm -f "$PIDFILE" fi } case "$1" in start) if [ "x$RUN" = "xyes" ] ; then echo -n "Starting ProFTPD ftp daemon: " start else if [ "x$INETD" = "xyes" ] ; then echo "ProFTPd is started from inetd/xinetd." else echo "ProFTPd warning: cannot start neither in standalone nor in inetd/xinetd mode. Check your configuration." fi fi ;; force-start) if [ "x$INETD" = "xyes" ] ; then echo "Warning: ProFTPd is started from inetd/xinetd (trying to start anyway)." fi echo -n "Starting ProFTPD ftp daemon: " start ;; stop) if [ "x$RUN" = "xyes" ] ; then echo -n "Stopping ProFTPD ftp daemon: " signal stop else if [ "x$INETD" = "xyes" ] ; then echo "ProFTPd is started from inetd/xinetd." else echo "ProFTPd warning: cannot start neither in standalone nor in inetd/xinetd mode. Check your configuration." fi fi ;; force-stop) if [ "x$INETD" = "xyes" ] ; then echo "Warning: ProFTPd is started from inetd/xinetd (trying to kill anyway)." fi echo -n "Stopping ProFTPD ftp daemon: " signal stop ;; reload) echo -n "Reloading $NAME configuration..." signal reload echo " done." ;; force-reload|restart) if [ "x$RUN" = "xyes" ] ; then echo -n "Restarting ProFTPD ftp daemon." signal stop echo -n "." sleep 2 echo -n "." start echo " done." else if [ "x$INETD" = "xyes" ] ; then echo "ProFTPd is started from inetd." else echo "ProFTPd warning: cannot start neither in standalone nor in inetd/xinetd mode. Check your configuration." fi fi ;; *) echo "Usage: /etc/init.d/$NAME {start|force-start|stop|force-stop|reload|restart|force-reload}" exit 1 ;; esac exit 0
You can try this: Open /rrot/ispconfig/scripts/shell/ftp_logs.php and replace PHP: if($dienst["dienst_ftp_status"] == "on"){ if($dist_ftp_version == "standalone"){ $mod->system->daemon_init($mod->system->server_conf["server_ftp_typ"], "start"); } else { $mod->system->daemon_init($dist_ftp_version, "start"); } } with PHP: if($dienst["dienst_ftp_status"] == "on"){ sleep(5); if($dist_ftp_version == "standalone"){ $mod->system->daemon_init($mod->system->server_conf["server_ftp_typ"], "start"); } else { $mod->system->daemon_init($dist_ftp_version, "start"); } }
I have changed it. At this moment, machine has an uptime of 6 days. I will post about any problem. Thank you!
Sorry for my late answer, I was on holidays until yesterday proftpd hanged again, two times since the change in the restart script. It seems that the sleep hasn't solved anything... Any idea? Should I try vsftpd?
Does this happen at the same time of day, or do times differ? If it's always the same time of day, it could be a cron job that causes the problem...
It always happens at 23:59, with the restart script. I have the following entries in root crontab: crontab -l 30 00 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/logs.php &> /dev/null 59 23 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/ftp_logs.php &> /dev/null 59 23 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/mail_logs.php &> /dev/null 59 23 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/cleanup.php &> /dev/null 0 4 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/webalizer.php &> /dev/null 0,30 * * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/check_services.php &> /dev/null 15 3,15 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/quota_msg.php &> /dev/null 40 00 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/traffic.php &> /dev/null 05 02 * * * /root/ispconfig/php/php /root/ispconfig/scripts/shell/backup.php &> /dev/null
It's this cron job. Open /root/ispconfig/scripts/shell/ftp_logs.php and change Code: if($dienst["dienst_ftp_status"] == "on"){ if($dist_ftp_version == "standalone"){ $mod->system->daemon_init($mod->system->server_conf["server_ftp_typ"], "stop"); } else { $mod->system->daemon_init($dist_ftp_version, "stop"); } } $mod->log->caselog("cp -f $ftp_log $ftp_log.$datum", $FILE, __LINE__); if($server["server_ftp_log_save"]){ $mod->log->caselog("touch $ftp_log.ispconfigsave", $FILE, __LINE__); $mod->log->caselog("cat $ftp_log >> $ftp_log.ispconfigsave", $FILE, __LINE__); } $fp = fopen($ftp_log, "w"); fwrite($fp, ""); fclose($fp); if($dienst["dienst_ftp_status"] == "on"){ if($dist_ftp_version == "standalone"){ $mod->system->daemon_init($mod->system->server_conf["server_ftp_typ"], "start"); } else { $mod->system->daemon_init($dist_ftp_version, "start"); } } to Code: if($dienst["dienst_ftp_status"] == "on"){ if($dist_ftp_version == "standalone"){ $mod->system->daemon_init($mod->system->server_conf["server_ftp_typ"], "stop"); } else { $mod->system->daemon_init($dist_ftp_version, "stop"); } } $mod->log->caselog("cp -f $ftp_log $ftp_log.$datum", $FILE, __LINE__); if($server["server_ftp_log_save"]){ $mod->log->caselog("touch $ftp_log.ispconfigsave", $FILE, __LINE__); $mod->log->caselog("cat $ftp_log >> $ftp_log.ispconfigsave", $FILE, __LINE__); } $fp = fopen($ftp_log, "w"); fwrite($fp, ""); fclose($fp); [B][COLOR="Red"]sleep(5);[/COLOR][/B] if($dienst["dienst_ftp_status"] == "on"){ if($dist_ftp_version == "standalone"){ $mod->system->daemon_init($mod->system->server_conf["server_ftp_typ"], "start"); } else { $mod->system->daemon_init($dist_ftp_version, "start"); } }
As you suggested in a previous post, I have already already changed that, but it hasn't solved the problem. Thank you!
hi i think i may have been having a similar problem to you, but mine is regular like yours ProtFTP continues running, seeming to be ok, however when you try to connect with an FTP client it gets denied (wrong u/name and password i believe) as i dont have the problem at this second i cant detail the problem anyway, i found doing /etc/init.d/proftpd restart fixes the problem however this may not work for you, worth a try though
No, the only solution to my problem is rebooting machine. Even kill -9 doesn't work. proftpd enters "D" state, and it doesn't respond to any signal. falko: I want to try vsftpd. Can I uninstall proftpd and install vsftpd with no problem? Shoud I reinstall ispconfig after doing that? Tahnk you very much
