Posts by Tom-i

    No problem. I know that package pinning is great but often breaks after a while cause of changed dependencies, updated dependencies, missing dependencies.. and so on ^^
    Take your time to sort out. But i think i will not be the only one with problem in this case..
    Thanks for holding hand and taking time..

    Yes Sure Debian Jessie.

    What i can say that imscp reconfiguration worked some weeks ago, So there seems to have something changed with the package dependencies.
    I know that you did not change but something changed so it broke.

    I only installed the mailman plugin. This set a strange package pinning and sources.list (mix of jessie and stretch) which of course installed some not matching packages. Thats it. I myself surely did not anything strange in that direction.

    But no Problem. I got it. Works again and everything is cool again. Keep on.

    Thank you.

    Got it sorted out. First i had to manual downgrade to libssl-1.0.0, then remove perl-modules and nearly all perl stuff.. mysql-server.. etc

    Then i was able to run installer without errors.

    Strange situation and for a "normal" user "the end".

    I am experiencedwith those things but such a situation should not happen with just a "plugin" that was activated.

    Package Installation fails with this error:

    1. ...php5.6-curl is already the newest version.php5.6-fpm is already the newest version.php5.6-gd is already the newest version.php5.6-gmp is already the newest version.php5.6-imap is already the newest version.php5.6-intl is already the newest version.php5.6-json is already the newest version.php5.6-mbstring is already the newest version.php5.6-mcrypt is already the newest version.php5.6-mysql is already the newest version.php5.6-opcache is already the newest version.php5.6-pspell is already the newest version.php5.6-xml is already the newest version.php5.6-zip is already the newest version.nginx-full is already the newest version.Some packages could not be installed. This may mean that you haverequested an impossible situation or if you are using the unstabledistribution that some required packages have not yet been createdor been moved out of Incoming.The following information may help to resolve the situation:The following packages have unmet dependencies: libssl-dev : Depends: libssl1.0.0 (= 1.0.1t-1+deb8u8) but 1.0.2l-1~bpo8+1 is to be installedE: Unable to correct problems, you have held broken packages.[ERROR] autoinstaller::Functions::build: An error occurred while performing build steps

    Installed libssl-dev from backports but i think the package pinning depends on the version from stable as i have seen in a commit on github..

    After that i removed /etc/apt/

    Then i had to install cpan integer..

    Than it failed with this error:

    Oh ich habe es gerade gefunden. Ich habe bisher immer nur nach geschaut. Es ist mir aber gerade aufgefallen das vu2019 garnicht zu gehört... sondern zu ... Somit einem anderen User, welcher natürlich auch auf den ersten Blick direkt infiziert scheint.

    @Nuxwin : I have overlooked that vu2019 does not belong to . is vu2021.. The sender is constructed as [email protected].. But vu2019 is, another client. There seems to be a check missing if the user belongs to the domain.. Could you check this?

    Ich habe jetzt chmod 000 auf den htdocs Ordner gesetzt. Die mailq selektiv bereinigt. Leider gehts munter weiter.

    Manuell habe ich die Php Files des Wordpress des Kunden geprüft. Keinerlei Infektionen feststellbar.

    @Nuxwin yes it seems there is a mail with severeal cc generated.this domain is a wordpress. client says he installed all updates. beside those POST Requests which appear not in the same time as the mails are send i have not seen any activity in this moment. It appears after some sekonds/minutes. I also rebootet the machine already to kill anything that could be loaded to ram. I will investigate it further today.

    @biologist Ich denke auch das die da irgendwas in den Ram/SHM laden was dann getriggert wird. Ich bin da eigentlich relativ fit. Aber die Header sagen leider nicht viel mehr aus als der Log. Definitiv nicht direkt aus Php.