v2.16 issues http or http services not starti

[Anonymous]

I installed v2.16 onto a physical machine (Dell PE750 2.11,2.13 worked fine) I had everything working then I rebooted now only service that autostarts is ssh. I tried running nstpasswd again it runs but it does not start http or https services for main gui. What command should I run to get it all working again? I tried restarting and that doesn't work either.

[Paul Blankenbaker]

Can you login or su to the root account and then run the following commands:

systemctl start httpd.service
systemctl status httpd.service

If things are working correctly, you should see messages like the following:

[root@taco-dev32 wui]# systemctl start httpd.service
[root@taco-dev32 wui]# systemctl status httpd.service
httpd.service - The Apache HTTP Server (prefork MPM)
      Loaded: loaded (/lib/systemd/system/httpd.service; enabled)
      Active: active (running) since Tue, 17 Apr 2012 12:15:56 -0400; 3s ago
     Process: 11119 ExecStop=/usr/sbin/httpd $OPTIONS -k stop (code=exited, status=0/SUCCESS)
     Process: 11123 ExecStart=/usr/sbin/httpd $OPTIONS -k start (code=exited, status=0/SUCCESS)
    Main PID: 11124 (httpd)
      CGroup: name=systemd:/system/httpd.service
          ├ 11124 /usr/sbin/httpd -k start
          ├ 11126 /usr/sbin/httpd -k start
          ├ 11127 /usr/sbin/httpd -k start
          ├ 11128 /usr/sbin/httpd -k start
          ├ 11129 /usr/sbin/httpd -k start
          ├ 11130 /usr/sbin/httpd -k start
          ├ 11131 /usr/sbin/httpd -k start
          ├ 11132 /usr/sbin/httpd -k start
          ├ 11133 /usr/sbin/httpd -k start
          └ 11134 /usr/sbin/httpd -k start
[root@taco-dev32 wui]#

If things are not working, there should be some indication as to what is wrong in some of the log files. Could you copy/paste the output from the following commands (it would help me know what might be going wrong on your system)?

tail /var/log/httpd/ssl_error_log
tail /var/log/messages

NOTE: If your NST system does not have a IP address assigned to it's primary interface when the web server is started, the web server may refuse to run. You can use the ifconfig command to check that the system has a IP address assigned.

[Anonymous]

Thanks. I can't vnc to it right now but did your commands thru ssh…..

login as: root
Access denied
root@10.98.1.25's password:
Last login: Tue Apr 17 07:33:23 2012 from 998-jsocolos.ncelec.local

================================================
= Linux Network Security Toolkit (NST v2.16.0) =
================================================

# systemctl start httpd.service
# systemctl status httpd.service
httpd.service - The Apache HTTP Server (prefork MPM)
          Loaded: loaded (/lib/systemd/system/httpd.service; enabled)
          Active: active (running) since Tue, 17 Apr 2012 14:29:35 -0700; 6s ago
         Process: 25973 ExecStart=/usr/sbin/httpd $OPTIONS -k start (code=exited, status=0/SUCCESS)
        Main PID: 25974 (httpd)
          CGroup: name=systemd:/system/httpd.service
                  â 25974 /usr/sbin/httpd -k start
                  â 25976 /usr/sbin/httpd -k start
                  â 25977 /usr/sbin/httpd -k start
                  â 25978 /usr/sbin/httpd -k start
                  â 25979 /usr/sbin/httpd -k start
                  â 25980 /usr/sbin/httpd -k start
# tail /var/log/httpd/ssl_error_log
  RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
  RSA server certificate CommonName (CN) `www.networksecuritytoolkit.org' does NOT match server name!?
  RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
  RSA server certificate CommonName (CN) `www.networksecuritytoolkit.org' does NOT match server name!?
  RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
  RSA server certificate CommonName (CN) `www.networksecuritytoolkit.org' does NOT match server name!?
  RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
  RSA server certificate CommonName (CN) `www.networksecuritytoolkit.org' does NOT match server name!?
# tail /var/log/messages
Apr 17 14:21:57 ccd06snort dbus-daemon: dbus:  Activating service name='org.freedesktop.PackageKit' (using servicehelper)
Apr 17 14:21:57 ccd06snort dbus:  Activating service name='org.freedesktop.PackageKit' (using servicehelper)
Apr 17 14:21:57 ccd06snort dbus-daemon: dbus:  Successfully activated service 'org.freedesktop.PackageKit'
Apr 17 14:21:57 ccd06snort dbus:  Successfully activated service 'org.freedesktop.PackageKit'
Apr 17 14:29:24 ccd06snort systemd-logind: New session 48 of user root.
Apr 17 14:29:35 ccd06snort systemd: PID file /var/run/httpd/httpd.pid not readable (yet?) after start.
Apr 17 14:29:35 ccd06snort dbus-daemon: dbus:  Activating via systemd: service name='org.freedesktop.Avahi' unit='dbus-org.freedesktop.Avahi.service'
Apr 17 14:29:35 ccd06snort dbus:  Activating via systemd: service name='org.freedesktop.Avahi' unit='dbus-org.freedesktop.Avahi.service'
Apr 17 14:29:35 ccd06snort dbus-daemon: dbus:  Activation via systemd failed for unit 'dbus-org.freedesktop.Avahi.service': Unit dbus-org.freedesktop.Avahi.service failed to load: No such file or directory. See system logs and 'systemctl status dbus-org.freedesktop.Avahi.service' for details.
Apr 17 14:29:35 ccd06snort dbus:  Activation via systemd failed for unit 'dbus-org.freedesktop.Avahi.service': Unit dbus-org.freedesktop.Avahi.service failed to load: No such file or directory. See system logs and 'systemctl status dbus-org.freedesktop.Avahi.service' for details.
# ifconfig
em1       Link encap:Ethernet  HWaddr 00:12:3F:EC:DE:00
          inet addr:10.98.1.21  Bcast:10.98.1.255  Mask:255.255.255.0
          inet6 addr: fe80::212:3fff:feec:de00/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:17060 errors:0 dropped:0 overruns:0 frame:0
          TX packets:8110 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:21954383 (20.9 MiB)  TX bytes:573602 (560.1 KiB)

em2       Link encap:Ethernet  HWaddr 00:12:3F:EC:DE:01
          inet addr:10.98.1.25  Bcast:10.98.1.255  Mask:255.255.255.0
          inet6 addr: fe80::212:3fff:feec:de01/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:1136 errors:0 dropped:0 overruns:0 frame:0
          TX packets:135 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:257903 (251.8 KiB)  TX bytes:19739 (19.2 KiB)

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:6137 errors:0 dropped:0 overruns:0 frame:0
          TX packets:6137 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:259592 (253.5 KiB)  TX bytes:259592 (253.5 KiB)

#

[Anonymous]

I think that helped me as i ran nmap to see what was running and saw that vnc was running. Before I did my last restart I ran the nstvncadmin so maybe that helped me get the vnc service configured…..

# nmap localhost

Starting Nmap 5.61TEST4 ( http://nmap.org ) at 2012-04-17 14:32 PDT
Nmap scan report for localhost (127.0.0.1)
Host is up (0.000023s latency).
rDNS record for 127.0.0.1: localhost.localdomain
Not shown: 994 closed ports
PORT     STATE SERVICE
22/tcp   open  ssh
80/tcp   open  http
443/tcp  open  https
5801/tcp open  vnc-http-1
5901/tcp open  vnc-1
6001/tcp open  X11:1

Nmap done: 1 IP address (1 host up) scanned in 0.18 seconds
#

[Paul Blankenbaker]

It looks like your web server is running to me.

You should be able to access it locally at: http://127.0.0.1/  OR https://127.0.0.1/

To access it remotely (from another machine), you'll need to use https:  https://10.98.1.21/ or https://10.98.1.21/