Re: [gentoo-user] apache 2 userdir access
Thanks for the idea, unfortunately it does not work. I changed the section in my commonapache2.conf: snip Still I don't have the permission... What permissions do you have on your home-directory? If you have it so that no users besides your own have permissions to enter it (i.e. ~ = rwx--) apache won't be able to access ~/public_html either. You'll have to set at least x-permissions for all users to your home-directory (rwx--x--x) for it to work... Patrick Börjesson -- Public key id: 4C5AB0BF Public key available at search.keyserver.net[:11371] pgp0.pgp Description: PGP signature
Re: [gentoo-user] apache 2 userdir access
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sunday 16 November 2003 11:46, Patrick Börjesson wrote: What permissions do you have on your home-directory? If you have it so that no users besides your own have permissions to enter it (i.e. ~ = rwx--) apache won't be able to access ~/public_html either. You'll have to set at least x-permissions for all users to your home-directory (rwx--x--x) for it to work... If you are paranoid about security then keep every user on your system in the same group, and only allow world access to your home directory. I know, sounds odd, but because other users are members of the same group they will be denied access on a group basis before the system even gets to checking world access. Execute permissions on a directory will allow a user into that directory, but will not allow them to see the files in it! - -- Mike Williams -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/t2eGInuLMrk7bIwRAqj5AJ0WEkFFA/+2NXmcHyKGZP/NgCL/9QCgndym 3tZXqur0Y0FVb2zqBAyNa3I= =yHaZ -END PGP SIGNATURE- -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] apache 2 userdir access
What permissions do you have on your home-directory? If you have it so that no users besides your own have permissions to enter it (i.e. ~ = rwx--) apache won't be able to access ~/public_html either. You'll have to set at least x-permissions for all users to your home-directory(rwx--x--x) for it to work... If you are paranoid about security then keep every user on your system in the same group, and only allow world access to your home directory. I know, sounds odd, but because other users are members of the same group they will be denied access on a group basis before the system even gets to checking world access. Execute permissions on a directory will allow a user into that directory, but will not allow them to see the files in it! But apache don't need to see the files in ~ since it already knows it should go into ~/public_html. So x-permissions should be sufficient. -- Public key id: 4C5AB0BF Public key available at search.keyserver.net[:11371] pgp0.pgp Description: PGP signature
Re: [gentoo-user] apache 2 userdir access
Yep, thats been the problem, my ~ was rwx-- ! Thanks for your help and all your ideas. Regards, Michael What permissions do you have on your home-directory? If you have it so that no users besides your own have permissions to enter it (i.e. ~ = rwx--) apache won't be able to access ~/public_html either. You'll have to set at least x-permissions for all users to your home-directory (rwx--x--x) for it to work... Patrick Börjesson -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] apache 2 userdir access
On Fri, 14 Nov 2003 17:52:54 +0100 Michael Spohn [EMAIL PROTECTED] wrote: I am trying to install for local users their $HOME/public_html directory to be accessible under apache 2 pointing the browser to http://localhost/~username I get from the browser: Forbidden You don't have permission to access /~michael/cv/index.html on this server. I would have liked to test the following before posting, but I managed to break my libphp4 and am currently rebuilding php - so no testing currently :\ Insert the following in /etc/apache2/commonapache2.conf: Directory /home/*/public_html AllowOverride File AuthConfig Limit Options Indexes SymLinksIfOwnerMatch IncludesNoExec IfModule mod_access.c Order allow,deny Allow from all /IfModule /Directory I hope that works, but it should. -- Dennis Freise [EMAIL PROTECTED] GnuPG key fingerprint: 2DE8 CCEF 6E20 11D4 3B27 21EC B0BA 1749 D2C8 38ED Get my public key at : http://www.final-frontier.ath.cx/gpg_public_key.txt pgp0.pgp Description: PGP signature
Re: [gentoo-user] apache 2 userdir access
On Fri, 14 Nov 2003 19:00:50 +0100 Dennis Freise [EMAIL PROTECTED] wrote: I would have liked to test the following before posting, but I managed to break my libphp4 and am currently rebuilding php - so no testing currently :\ I was able to test it now. It works as I suggested, but you can also insert the block into a virtual-server config (VirtualHost...). If you do so, you should comment out the directive IfModule mod_userdir.c.../IfModule in /etc/apache2/conf/commonapache2.conf and insert the whole block into the vhost-config. Then the userdir-feature is only available for that particular vhost, which I prefer. Be sure to put the Directory /home/*/public_html.../Directory somewhere below that. Insert the following in /etc/apache2/commonapache2.conf: Directory /home/*/public_html AllowOverride File AuthConfig Limit Options Indexes SymLinksIfOwnerMatch IncludesNoExec IfModule mod_access.c Order allow,deny Allow from all /IfModule /Directory I also noted that the home-directory of the user, the dir 'public_html' and all webfiles under that dir must have mode 0755/0644 for userdir to work. -- Dennis Freise [EMAIL PROTECTED] GnuPG key fingerprint: 2DE8 CCEF 6E20 11D4 3B27 21EC B0BA 1749 D2C8 38ED Get my public key at : http://www.final-frontier.ath.cx/gpg_public_key.txt pgp0.pgp Description: PGP signature
Re: [gentoo-user] apache 2 userdir access
Thanks for the idea, unfortunately it does not work. I changed the section in my commonapache2.conf: ... snip Directory /home/*/public_html AllowOverride All Options Indexes SymLinksIfOwnerMatch IncludesNoExec #Options MultiViews -Indexes Includes FollowSymLinks IfModule mod_access.c Order allow,deny Allow from all /IfModule /Directory snip ... Still I don't have the permission... I don't have any experience with the virtual server thing. Will give it a try. Thanks Michael I am trying to install for local users their $HOME/public_html directory to be accessible under apache 2 pointing the browser to http://localhost/~username I get from the browser: Forbidden You don't have permission to access /~michael/cv/index.html on this server. I would have liked to test the following before posting, but I managed to break my libphp4 and am currently rebuilding php - so no testing currently :\ Insert the following in /etc/apache2/commonapache2.conf: Directory /home/*/public_html AllowOverride File AuthConfig Limit Options Indexes SymLinksIfOwnerMatch IncludesNoExec IfModule mod_access.c Order allow,deny Allow from all /IfModule /Directory I hope that works, but it should. -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2
how do you start it? you should do like this: rc-update add apache2 default On Sat, 2003-11-08 at 17:45, Lewis Powell wrote: I am running an apache 2 webserver, but it refuses to load appropriately on system boot. However, when I run /etc/init.d/apache from the commandline, it starts up without error or problem; how can I troubleshoot this so that the server starts when the computer does? Lewis Powell I am the blown fuse that blacks you out. I Am Darkwing Duck. -- [EMAIL PROTECTED] mailing list -- Regards, Redeeman () ascii ribbon campaign - against html e-mail /\- against microsoft attachments -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2
It's already there, it just doesn't actually succeed in starting up. Lewis I am the blown fuse that blacks you out. I Am Darkwing Duck. On Sat, 8 Nov 2003, Redeeman wrote: how do you start it? you should do like this: rc-update add apache2 default On Sat, 2003-11-08 at 17:45, Lewis Powell wrote: I am running an apache 2 webserver, but it refuses to load appropriately on system boot. However, when I run /etc/init.d/apache from the commandline, it starts up without error or problem; how can I troubleshoot this so that the server starts when the computer does? Lewis Powell I am the blown fuse that blacks you out. I Am Darkwing Duck. -- [EMAIL PROTECTED] mailing list -- Regards, Redeeman () ascii ribbon campaign - against html e-mail /\- against microsoft attachments -- [EMAIL PROTECTED] mailing list -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Saturday 08 November 2003 08:53 am, Lewis Powell wrote: It's already there, it just doesn't actually succeed in starting up. Lewis I am the blown fuse that blacks you out. I Am Darkwing Duck. On Sat, 8 Nov 2003, Redeeman wrote: how do you start it? you should do like this: rc-update add apache2 default I think what he is trying to say is in your initial email you were trying to start apache2 by issuing the command /etc/init.d/apache start - for apache2 it must be started by issuing the command /etc/init.d/apache2 start. - -- Matt http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0x7D81740A -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/rSGgZosHVX2BdAoRAqEjAJ9r/qLz0Kg7K84NsJGStLIoP6wPUQCfY59N WhBUY0/CvgSG7CpfU4kFBds= =8Bp7 -END PGP SIGNATURE- -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2
Ok, let me try this again, I was, it would appear, much to imprecise. I have previously run, rc-update add apache2 default and that command executed successfully; however, when the computer boots, for some reason, there is an unknown error that prevents apache2 from starting. Oddly, when I run /etc/init.d/apache2 start apache2 starts with no errors. As a result, I can start it, but for some reason, I must start it manually. Lewis Powell I am the blown fuse that blacks you out. I Am Darkwing Duck. On Sat, 8 Nov 2003, Matt Chorman wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Saturday 08 November 2003 08:53 am, Lewis Powell wrote: It's already there, it just doesn't actually succeed in starting up. Lewis I am the blown fuse that blacks you out. I Am Darkwing Duck. On Sat, 8 Nov 2003, Redeeman wrote: how do you start it? you should do like this: rc-update add apache2 default I think what he is trying to say is in your initial email you were trying to start apache2 by issuing the command /etc/init.d/apache start - for apache2 it must be started by issuing the command /etc/init.d/apache2 start. - -- Matt http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0x7D81740A -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/rSGgZosHVX2BdAoRAqEjAJ9r/qLz0Kg7K84NsJGStLIoP6wPUQCfY59N WhBUY0/CvgSG7CpfU4kFBds= =8Bp7 -END PGP SIGNATURE- -- [EMAIL PROTECTED] mailing list -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2
On Sat, 2003-11-08 at 13:19, gabriel wrote: what does /var/log/apache2/error_log say? [Sat Nov 01 14:32:07 2003] [alert] (EAI 2)Name or service not known: mod_unique_id: unable to find IPv4 addres s of ultra Configuration Failed [Sat Nov 01 22:18:59 2003] [alert] (EAI 2)Name or service not known: mod_unique_id: unable to find IPv4 addres s of ultra Configuration Failed -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2
Lewis Powell wrote: On Sat, 2003-11-08 at 13:19, gabriel wrote: what does /var/log/apache2/error_log say? [Sat Nov 01 14:32:07 2003] [alert] (EAI 2)Name or service not known: mod_unique_id: unable to find IPv4 addres s of ultra Configuration Failed [Sat Nov 01 22:18:59 2003] [alert] (EAI 2)Name or service not known: mod_unique_id: unable to find IPv4 addres s of ultra Configuration Failed Easy to fix. Add this to /etc/hosts: your ip ultra substituting your ip for the IP address of your NIC. -- Andrew Gaffney -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2
Andrew Gaffney wrote: Lewis Powell wrote: On Sat, 2003-11-08 at 13:19, gabriel wrote: what does /var/log/apache2/error_log say? [Sat Nov 01 14:32:07 2003] [alert] (EAI 2)Name or service not known: mod_unique_id: unable to find IPv4 addres s of ultra Configuration Failed [Sat Nov 01 22:18:59 2003] [alert] (EAI 2)Name or service not known: mod_unique_id: unable to find IPv4 addres s of ultra Configuration Failed Easy to fix. Add this to /etc/hosts: your ip ultra substituting your ip for the IP address of your NIC. I have a guess as to why this only happens at boot and not if you run '/etc/init.d/apache2 start'. Probably, you run a DNS server that can resolve 'ultra' to an IP. The DNS server is probably starting after Apache which is causing the problem, because Apache can't resolve the IP. -- Andrew Gaffney -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2 and mod_perl 1.99.09
Doug Weimer wrote: On Tue, 2003-10-07 at 22:04, Andrew Gaffney wrote: Can someone send me a stock /etc/apache2/conf/commonapache2.conf? I've made a lot of modifications trying to make it work. I want to start fresh. You should have one in /usr/portage/net-www/apache/files/2.0.40/commonapache2.conf . This is the one that is installed when you emerge apache. Damn, I knew I should have done a diff before blindly copying that one over my existing one. Now everything is borked. I'm getting 403 errors on my scripts in /cgi-bin. -- Andrew Gaffney -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2 and mod_perl 1.99.09
Andrew Gaffney wrote: Doug Weimer wrote: On Tue, 2003-10-07 at 22:04, Andrew Gaffney wrote: Can someone send me a stock /etc/apache2/conf/commonapache2.conf? I've made a lot of modifications trying to make it work. I want to start fresh. You should have one in /usr/portage/net-www/apache/files/2.0.40/commonapache2.conf . This is the one that is installed when you emerge apache. Damn, I knew I should have done a diff before blindly copying that one over my existing one. Now everything is borked. I'm getting 403 errors on my scripts in /cgi-bin. Okay, its all good again. I re-emerged apache, ran etc-update, and replaced /etc/apache2/conf/commonapache2.conf with the newly merged version, which, by the way, is *not* the same as the one in /usr/portage/net-www/apache/files/2.0.40. That particular one is setup to run as user and group 'apache' with a document root at '/var/www/localhost' or something like that. -- Andrew Gaffney -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2 and mod_perl 1.99.09
Doug Weimer wrote: On Tue, 2003-10-07 at 23:42, Andrew Gaffney wrote: Damn, I knew I should have done a diff before blindly copying that one over my existing one. Now everything is borked. I'm getting 403 errors on my scripts in /cgi-bin. Are you using the stable apache2 build? The stable apache2's don't use /var/www/localhost yet. If you look at your commonapache2.conf file you'll notice that the directory alias's are set to /var/www/localhost for the 2.0.47-r1 ebuild. Your files are probably still in /home/httpd correct? If so, to fix the commonapache2.conf file you copied over you can run: perl -pi -e 's|var/www/localhost|home/httpd|;' /etc/apache2/conf/commonapache2.conf This code is based on the substitution done in the 2.0.47.ebuild if you want to verify it first. All it does is substitute each occurance of var/www/localhost with home/httpd. Sorry I forgot about the /var/www/localhost change, No need to apologize. I've been using Linux for about 6 years and should have known better than to blindly copy that file over a (mostly) working one, but my judgement goes at 2 AM :) -- Andrew Gaffney -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2 and mod_perl 1.99.09
* Andrew Gaffney [EMAIL PROTECTED] wrote on 2003.10.08. 04:08: I thought that I had mod_perl working, but I was wrong. All I should need to do is add '-D PERL' in /etc/conf.d/apache2, correct? I keep getting 404 errors when I try to access any script I place in /home/httpd/perl. What extra config (if any) do I need to get this to work? And yes, I have restarted apache. Alias /perl/ /home/httpd/perl/ will solve your 404 problem... and turn it into a 500 problem without further config. http://perl.apache.org/docs/2.0/user/intro/start_fast.html#Configuration -- Sandor -- [EMAIL PROTECTED] mailing list
Re: [gentoo-user] Apache 2 and PHP
It sounds dumb but... did you uncomment the line where -D PHP must be? (i has having the same stuff than magnus... when i revised the /etc/conf.d/apache2 i saw my error... and the simptoms where the same than magnus descrieve) Good look. PS: as i see you need to add apache2 to use,export ACCEPT_KEYWORDS=~x86 (for getting the apache2 instead the apache 1);emerge apache2 ; emerge mod_php; edit /etc/conf.d/apache2 uncoment the line #APACHE2_OPTS=-D SSL and let it like APACHE2_OPTS=-D SSL -D PHP start apache2 and it should work. :) On Tue, 2003-02-04 at 11:56, Luis Morales wrote: on apache.conf add: LoadModule php4_moduleextramodules/libphp4.so AddModule mod_php4.c Include conf/addon-modules/mod_php.conf and review your make .conf USE parameters and made emerge mod_php LM Magnus Lie Hetland wrote: I'm trying to install Apache 2 and PHP together, and I'm having trouble making Apache actually process my PHP documents with PHP -- it simply returns them as-is with an application/x-httpd-php MIME type. I've looked around and I haven't found anything directly helpful. I guess that somehow PHP isn't getting loaded... I've added apache2 to my USE variable before merging mod_php, so libphp ends up in extramodules. 70_mod_php.conf ends up in conf/modules.d and gets included (I've gotten syntax errors on stuff I've attempted in it.) I've added -D PHP to APACHE_OPTS in /etc/conf.d/apache2, and it seems that the LoadModule command in 70_mod_php.conf is executed. (I tried moving it outside the IfDefine and IfModule clauses, and that didn't seem to help.) I saw a mention somewhere on the net that another user had gotten rid of this problem by uncommenting and setting ServerName in apache2.conf; sounds like a longshot, and hasn't helped me. Merging and running Apache 1 and mod_php has worked just fine, so I guess this may be related to Apache 2's non-official status in Gentoo (being masked) -- but I'm guessing that it's just as likely that I'm doing/missing something really dumb... Any help would be greatly appreciated, - Magnus -- [EMAIL PROTECTED] mailing list