Martynas, I can't speak for others of course, but I'd find this kind of announcement a good use of the DA 'My Messages' feature. I made a feature request to silence DirectAdmin licensing and update notifications, which are just noise IMO, but I would find it useful to be alerted when software has been downgraded and the reason why.Due to many complaints, we've reverted the version back to 2.4.51, if you'd like to get 2.4.52 installed, you'd need to add the following line to custom_versions.txt:
Code:apache2.4:2.4.52:
Cant confirm this, all our servers has Event MPM and not single of them have this problem.I suspect it is due to the event MPM worker,
Also http2 in use and hsts (preload or so)?Cant confirm this, all our servers has Event MPM and not single of them have this problem.
Al our server have the latest Apache 2.4.52 installed
I don't really like that now the default was set to 2.4.51 again. Now by accident I downgraded my servers when running an update_versions command for imagemagick while my servers (like a lot of others) were running just fine.Due to many complaints, we've reverted the version back to 2.4.51,
Hi,I also have http2 enabled and on some sites hsts, but that is a customer's choice to have that, not ours.
I don't really like that now the default was set to 2.4.51 again. Now by accident I downgraded my servers when running an update_versions command for imagemagick while my servers (like a lot of others) were running just fine.
There might be lots of complaints here, but there also lots of users reported not having this issue. The normal way is that those who have problems use the custom versions to revert back. Unless almost everybody has an issue, which does not seem the case here.
Thats also true, but also randomly then.Is safer to have a stable server than crashed randomly
Hi this change solve the problem ?very weird, we also have the problem but only since 3 days and also only on all cPanel servers. On the DA servers with Apache (V 2.4.52) the problem does not occur until now?!
I suspect it is due to the event MPM worker, so I changed all to prefork
Hi prefork then no http2 possible for example sofar i know.Hi this change solve the problem ?
Downgrade didnt solved my problem.
Considering 2.4.52 involves security enhancements,
DirectAdmin does not use mod_lua and any forward proxying by default.
Yes the problem was solved on all cPanel servers (CL6 & CL 7 & CL8), on the DA servers (CL 7 & CL8) I have not changed it because they never had apache hangs until today. We monitor everything with an external script which checks the status every minute and if necessary connects via ssh and restart apache if it should hang.Hi this change solve the problem ?
Downgrade didnt solved my problem.
Indeed! Server load has increased noticeablyHi prefork then no http2 possible for example sofar i know.
Apache 2.4.52
2 CVE's updates this version *) SECURITY: CVE-2021-44790: Possible buffer overflow when parsing multipart content in mod_lua of Apache HTTP Server 2.4.51 and earlier (cve.mitre.org) A carefully crafted request body can cause a buffer overflow in the mod_lua multipart...forum.directadmin.com
This security fixes but:
Ah, good catch! However, I would still prefer to run a version with all CVE's patched. Less thought required if I ever do choose to modify my installation in the future.
#!/bin/bash
if [ "${1}" == "apache" ] && [ "${2}" == "2.4.52" ]
then
wget -O /tmp/instability.patch "https://bz.apache.org/bugzilla/attachment.cgi?id=38149&action=diff&collapsed=&headers=1&format=raw"
patch -p0 -d %pathofextractedhttpdtarball% < /tmp/instability.patch
The following file can be used for this: configure/ap2/configure.apache (for permanent changes: custom/ap2/configure.apache)That would seem to be ideal. Have a hook that runs after extraction but before ./configure - with specific parameters passed to it - for all CustomBuild options, such as the shortname of the application (i.e. apache) and the version (i.e 2.4.52)