× NETGEAR will be terminating ReadyCLOUD service by July 1st, 2023. For more details click here.

Start a New Discussion

Start a New Discussion

Orbi WiFi 7 RBE973
Reply

mod_privsep.so & mod_authn_privsep.so lost after apache upgrade

foranw
Aspirant
Aspirant
‎2023-07-06 11:18 AM
‎2023-07-06 11:18 AM

mod_privsep.so & mod_authn_privsep.so lost after apache upgrade

I tried apt-get upgrade and think 'apache2-bin' removed mod_privsep.so
Is @StephenB still around? Does anyone else have a copy  of
/usr/lib/apache2/modules/mod_privsep.so and
/usr/lib/apache2/modules/mod_authn_privsep.so

 

Or is there a good way to revert to a previous apache? Maybe from https://rnxtras.com/?

This is the same issue in the previous 2018 post, but it's too old for me to comment on.
https://community.netgear.com/t5/New-ReadyNAS-Users-General/Cannot-Access-Admin-Page-ReadyNas-102-be...
and the link on https://www.linuxquestions.org/questions/linux-server-73/apache-module-mod_authn_privsep-so-missing-... is also dead

I'm on a RR4360X

apache2[26823]: apache2: Syntax error on line 26 of /etc/frontview/apache/safe-mode.conf: Syntax error on line 14
of /etc/frontview/apache/fv-admin.conf: Syntax error on line 1 of /etc/frontview/apache/Admin_Auth.conf: Syntax error on line 2 of /e
tc/frontview/apache/Auth.conf: Cannot load /usr/lib/apache2/modules/mod_privsep.so into server: /usr/lib/apache2/modules/mod_privsep.s
o: cannot open shared object file: No such file or directory

Message 1 of 6
0 Kudos
Reply
foranw
Aspirant
Aspirant
‎2023-07-06 12:45 PM
‎2023-07-06 12:45 PM

Re: mod_privsep.so & mod_authn_privsep.so lost after apache upgrade

oh yikes! I tried to use basic auth in  /etc/frontview/apache/Auth.conf[0] and get new scarier errors. Maybe I'm in more trouble than I thought!

 

 

/usr/sbin/apache2
apache2: Syntax error on line 140 of /etc/apache2/apache2.conf: Syntax error on line 2 of /etc/apache2/mods-enabled/auth_token.load: Cannot load /usr/lib/apache2/modules/mod_auth_token.so into server: /usr/lib/apache2/modules/mod_auth_token.so: undefined symbol: ap_log_rerror

[0]
# htpasswd -c /etc/frontview/apache/filepass admin
AuthType Basic
AuthName "Restricted Files"
AuthBasicProvider file
AuthUserFile "/etc/frontview/apache/filepass"
Require user admin

 

Message 2 of 6
0 Kudos
Reply
StephenB
Guru Guru
Guru
‎2023-07-06 04:45 PM
‎2023-07-06 04:45 PM

Re: mod_privsep.so & mod_authn_privsep.so lost after apache upgrade

Have you tried an OS reinstall?

Message 3 of 6
0 Kudos
Reply
Sandshark
Sensei
Sensei
‎2023-07-07 05:25 AM
‎2023-07-07 05:25 AM

Re: mod_privsep.so & mod_authn_privsep.so lost after apache upgrade

Yes, you are in more trouble than you thought.   apt-get upgrade should never be performed on a ReadyNAS, as the OS includes both Netgear-specific versions of some modules as well as some other Netgear executables that may rely on a specific outdated version of a standard one.  What you have run into thus far is likely the tip of the iceberg.

 

Hopefully, an OS re-install will fix your issue.  But before you try that, if you can still access your files, make sure your backup is complete.  If the OS re-install doesn't fix it, things may get worse, where you need to factory default and start over.

Message 4 of 6
0 Kudos
Reply
foranw
Aspirant
Aspirant
‎2023-07-07 07:55 AM
‎2023-07-07 07:55 AM

Re: mod_privsep.so & mod_authn_privsep.so lost after apache upgrade

Thanks for the quick responses!


I haven't tried reinstalling the OS yet. Still hopeful I can avoid downtime -- there are a few long running processes actively using the NAS.

 

I'm hoping I can reconstruct the debian 'apache2 2.2.34-0.netgear2' (and the rest of the *netgear versioned packages) from the restore image.
https://www.downloads.netgear.com/files/GDC/READYNAS-300/ReadyNASOS-6.10.8-x86_64.zip

 

 

1) Any insights into mounting the .img file? Or better ways to get at pristine OS files?


2) are there docs for backing up the RAID configuration (while CLI is still up)/migrating to e.g. openmediavault (If I totally bork ReadyNAS OS)

 

-------

 for anyone else that ends up here, /var/log/apt/history.log shows the damage:

 

 

Spoiler

apache2-mpm-prefork:amd64 (2.2.34-0.netgear2, 2.4.10-10+deb8u12)
apache2.2-common:amd64 (2.2.34-0.netgear2, 2.4.10-10+deb8u12)
apache2.2-bin:amd64 (2.2.34-0.netgear2, 2.4.10-10+deb8u12)
apache2:amd64 (2.2.34-0.netgear2, 2.4.10-10+deb8u12)
libapache2-mod-authnz-external:amd64 (3.2.6-1.netgear1, 3.3.2-0.1+b1)
libapache2-mod-authz-unixgroup:amd64 (1.0.3-1.netgear2, 1.1.0-0.1)

wget:amd64 (1.16-1+deb8u4.netgear1, 1.16-1+deb8u5)
snmpd:amd64 (5.7.2.1+dfsg-1+0.netgear2, 5.7.2.1+dfsg-1+deb8u1+b1)
libsnmp-base:amd64 (5.7.2.1+dfsg-1+0.netgear2, 5.7.2.1+dfsg-1+deb8u1)
libsnmp30:amd64 (5.7.2.1+dfsg-1+0.netgear2, 5.7.2.1+dfsg-1+deb8u1+b1)
clamav:amd64 (0.99.2+dfsg-6+deb9u1.netgear1, 0.100.0+dfsg-0+deb8u1)
clamav-daemon:amd64 (0.99.2+dfsg-6+deb9u1.netgear1, 0.100.0+dfsg-0+deb8u1)
clamav-freshclam:amd64 (0.99.2+dfsg-6+deb9u1.netgear1, 0.100.0+dfsg-0+deb8u1)
clamav-base:amd64 (0.99.2+dfsg-6+deb9u1.netgear1, 0.100.0+dfsg-0+deb8u1)
libclamav7:amd64 (0.99.2+dfsg-6+deb9u1.netgear1, 0.100.0+dfsg-0+deb8u1)

 

Message 5 of 6
0 Kudos
Reply
StephenB
Guru Guru
Guru
‎2023-07-08 04:01 AM
‎2023-07-08 04:01 AM

Re: mod_privsep.so & mod_authn_privsep.so lost after apache upgrade

@foranw wrote:

 

Or better ways to get at pristine OS files?

 

Not something I've tried, but the internal flash should be extractable in tech support mode.

 

Look for the smallest disk with a single partition with (in tech support mode)

 

cat /proc/partitions

 

 

Let's assume it's sdg.

 

With an X86 OS-6 NAS you mount it with

 

mount /dev/sdg1 /mnt

 

For an ARM OS-6 NAS you mount it with

 

mount =t=ubifs ubi0_0 /mnt

 

 

You can then extract root.tlz with

 

tar -avx -f root.tlz -C /sysroot

 

Though it's probably safer to extract it to a folder on your data volume first, so you can see what it would overwrite.

Message 6 of 6
0 Kudos
Reply
Top Contributors
See All
Discussion stats
  • 5 replies
  • ‎2023-07-06 11:18 AM
  • 1036 views
  • 0 kudos
  • 3 in conversation
Announcements