search

hashview / hashview-old

A web front-end for password cracking and analytics
http://www.hashview.io
GNU General Public License v3.0
620 stars 134 forks source link

Internal Server Error on tasks creation. #386

Closed dark0venom closed 6 years ago

dark0venom commented 6 years ago

i have downloaded by torrent weakpass 2a to my Ubuntu 16.04 server (master) and directly push it to control/wordlists. Everything is fine until I create a task for the wordlist. I got a Internal Server Error ? My problem seems to be on every wordlist with any size.

thks

ccammilleri commented 6 years ago

Are you able to provide the error output from the console? Perhaps there was an issue with the import process, but I'm not sure. You can also look in the mysql database to see if the size column matches the number or words you expected to be imported.

dark0venom commented 6 years ago

from server ouput

16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:1067:in catch' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:1067:ininvoke' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:907:in call!' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:895:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/xss_header.rb:18:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/base.rb:49:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/base.rb:49:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/path_traversal.rb:16:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/json_csrf.rb:18:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/base.rb:49:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/base.rb:49:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-protection-1.5.3/lib/rack/protection/frame_options.rb:31:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-1.6.5/lib/rack/session/abstract/id.rb:225:in context' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-1.6.5/lib/rack/session/abstract/id.rb:220:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-1.6.5/lib/rack/logger.rb:15:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-1.6.5/lib/rack/commonlogger.rb:33:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:219:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:212:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-1.6.5/lib/rack/head.rb:13:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-1.6.5/lib/rack/methodoverride.rb:22:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:182:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:2013:incall' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:1487:in block in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:1787:insynchronize' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/sinatra-1.4.7/lib/sinatra/base.rb:1487:in call' 16:07:55 web.1 | /home/dark0venom/.rvm/gems/ruby-2.2.2/gems/rack-1.6.5/lib/rack/handler/webrick.rb:88:inservice' 16:07:55 web.1 | /usr/share/rvm/rubies/ruby-2.2.2/lib/ruby/2.2.0/webrick/httpserver.rb:138:in service' 16:07:55 web.1 | /usr/share/rvm/rubies/ruby-2.2.2/lib/ruby/2.2.0/webrick/httpserver.rb:94:inrun' 16:07:55 web.1 | /usr/share/rvm/rubies/ruby-2.2.2/lib/ruby/2.2.0/webrick/server.rb:294:in `block in start_thread' 16:07:55 web.1 | 184.75.220.26 - - [23/Jan/2018:16:07:55 -0500] "POST /tasks/create HTTP/1.1" 500 30 0.0041 16:07:55 web.1 | 184.75.220.26 - - [23/Jan/2018:16:07:55 EST] "POST /tasks/create

ccammilleri commented 6 years ago

heh, I can't tell whats happening from that output. It might be best to run in development mode to get better debug output. Before you do that, you'll need to initialize a development database with this command RACK_ENV=development rake db:setup. That command will overwrite config/agent_config.json so you might wanna back that up and rename it back after issuing the db:setup command.

Then run hashview RACK_ENV=development foreman start and go through the same steps.

Were you able to see the wordlist entry in the database?

dark0venom commented 6 years ago

I think I screw it up with wordlist import here is the dump of wordlist from hashview database -- MySQL dump 10.13 Distrib 5.7.20, for Linux (x86_64)

-- Host: localhost Database: hashview

-- Server version 5.7.20-0ubuntu0.16.04.1

/!40101 SET @OLD_CHARACTER_SET_CLIENT=@@CHARACTER_SET_CLIENT /; /!40101 SET @OLD_CHARACTER_SET_RESULTS=@@CHARACTER_SET_RESULTS /; /!40101 SET @OLD_COLLATION_CONNECTION=@@COLLATION_CONNECTION /; /!40101 SET NAMES utf8 /; /!40103 SET @OLD_TIME_ZONE=@@TIME_ZONE /; /!40103 SET TIME_ZONE='+00:00' /; /!40014 SET @OLD_UNIQUE_CHECKS=@@UNIQUE_CHECKS, UNIQUE_CHECKS=0 /; /!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 /; /!40101 SET @OLD_SQL_MODE=@@SQL_MODE, SQL_MODE='NO_AUTO_VALUE_ON_ZERO' /; /!40111 SET @OLD_SQL_NOTES=@@SQL_NOTES, SQL_NOTES=0 /;

-- -- Table structure for table wordlists

DROP TABLE IF EXISTS wordlists; /!40101 SET @saved_cs_client = @@character_set_client /; /!40101 SET character_set_client = utf8 /; CREATE TABLE wordlists ( id bigint(20) NOT NULL AUTO_INCREMENT, lastupdated datetime DEFAULT NULL, type varchar(25) COLLATE utf8_unicode_ci DEFAULT NULL, name varchar(256) COLLATE utf8_unicode_ci DEFAULT NULL, path varchar(2000) COLLATE utf8_unicode_ci DEFAULT NULL, size varchar(100) COLLATE utf8_unicode_ci DEFAULT NULL, checksum varchar(64) COLLATE utf8_unicode_ci DEFAULT NULL, PRIMARY KEY (id) ) ENGINE=InnoDB AUTO_INCREMENT=10 DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci; /!40101 SET character_set_client = @saved_cs_client /;

-- -- Dumping data for table wordlists

LOCK TABLES wordlists WRITE; /!40000 ALTER TABLE wordlists DISABLE KEYS /; INSERT INTO wordlists VALUES (1,'2018-01-22 10:22:59','dynamic','Smart Wordlist','control/wordlists/SmartWordlist.txt','0','e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855'),(6,'2018-01-23 15:48:57','static','weakpass_2_wifi','control/wordlists/weakpass_2_wifi','2347498477',NULL),(7,'2018-01-23 16:28:30','static','crackstation.txt','control/wordlists/crackstation.txt','7485610',NULL),(8,'2018-01-23 16:38:16','static','dump.sql','control/wordlists/dump.sql','0',NULL),(9,'2018-01-23 16:38:16','static','dump.txt','control/wordlists/dump.txt','16',NULL); /!40000 ALTER TABLE wordlists ENABLE KEYS /; UNLOCK TABLES; /!40103 SET TIME_ZONE=@OLD_TIME_ZONE /;

/!40101 SET SQL_MODE=@OLD_SQL_MODE /; /!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS /; /!40014 SET UNIQUE_CHECKS=@OLD_UNIQUE_CHECKS /; /!40101 SET CHARACTER_SET_CLIENT=@OLD_CHARACTER_SET_CLIENT /; /!40101 SET CHARACTER_SET_RESULTS=@OLD_CHARACTER_SET_RESULTS /; /!40101 SET COLLATION_CONNECTION=@OLD_COLLATION_CONNECTION /; /!40111 SET SQL_NOTES=@OLD_SQL_NOTES /;

Little bit of cleaning and brb with the result. I will use dev environment if things not fix. btw thks !!!

ccammilleri commented 6 years ago

no problem. also, keep in mind the wordlist importing is a background job. so there could be the case that it truly isn't finished importing even tho you see it in the UI. one way to quickly tell if it has completed is to see if there is a file with the same name and extension .checksum in the config/wordlist directory.

i128 commented 6 years ago

Checksums files are not generated on hashview, only on agents.

On Tue, Jan 23, 2018 at 3:49 PM, ccammilleri notifications@github.com wrote:

no problem. also, keep in mind the wordlist importing is a background job. so there could be the case that it truly isn't finished importing even tho you see it in the UI. one way to quickly tell if it has completed is to see if there is a file with the same name and extension .checksum in the config/wordlist directory.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/hashview/hashview/issues/386#issuecomment-359942536, or mute the thread https://github.com/notifications/unsubscribe-auth/ACTh69G3REYat_ajvS4uKVWMY0wf-UYPks5tNlPjgaJpZM4RqQwW .

-- No trees were harmed in the creation or sending of this email, however millions of electrons were terribly inconvenienced.

dark0venom commented 6 years ago

All fix it was hashcat binaries not correctly set in master. Thks you all again !!!!