Re: roaming access

To: karsten.bolding@jrc.it
Cc: debian-user@lists.debian.org
Subject: Re: roaming access
From: Fraser Campbell <fraser@greynet.net>
Date: Mon, 18 Jan 1999 15:11:49 -0500 (EST)
Message-id: <[🔎] Pine.LNX.3.96.990118150734.2924A-100000@greynet.net>

Karsten wrote:

> My /etc/apache/httpd.conf was automatically changed when I installed
> libapache-mod-roaming_0.9.1-1.deb and if I look in this file all the
> things mentioned in /usr/doc/llibapache-mod-roaming/README are present.
> I tried to re-install  libapache-mod-auth-sys_1.10-4.2.deb with out any
> luck.

Your authentication is probably not working because apache must be able to
read your shadow password file.  Only root and group shadow can read the
password file ... Apache runs under the user and group www-data.  Edit
/etc/apache/httpd.conf to make apache run as group shadow and you should
find that your authentication works.

This of course introduces some security concerns but I think is fairly
safe so long as your users cannot create links.  Your should have an
access control on Directory / to disallow links and then you'll be ok ...
I think ... but I'm not a security expert so be careful and ask around.

--
Sincerely,

Fraser Campbell
Systems Administrator

Reply to:

Prev by Date: Re: 2.2.0pre7 and ppp
Next by Date: cracklib's cron emails.
Previous by thread: Re: roaming access
Next by thread: XEmacs beta builds
Index(es):
- Date
- Thread