I didn't do that in my previous test, but I just have and it doesn't appear to have made any difference -- no matter what combination I try, I can't make the server give me a 500.
What a pest. I like easily reproducible bug reports...
Hello Matt,
I have upgraded to Apache2 and compiled the latest version of libapache2-mod-auth-mysql (4.3.9-2) to try and get rid of this pesky problem but I get the same exact results as I did before with Apache13. Something is wrong with the "require group" directive ("require user" works fine). I am using sha1 encrypted passwords, but I have tested using "MySQL" and "MD5" forms of encryption with no variance in results. If I could just find out why your configuration does not generate this bug.. Every time I try to browse to a directory that belongs to a different group, Apache gives me the 500 error with a configuration error in the log. The problem seems to be that libapache2-mod-auth-mysql is trying to perform a "select" statement on a user with an unassigned group which returns the apache configuration error and 500 ("usernick" only belongs to the "web" group, not the "adm" group in this example). If there is *anything* else I can do to provide info, please let me know.
Best Regards,
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1482): Handling an authentication request for section /var/www/
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1523): Starting basic user auth for [usernick] in /var/www/, child pid 2780
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1338): Constructing password collection query with passfield=[passwd], table=[mysql_auth], userfield=[usernick], where_clause=[]
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1192): sec->dbh in /var/www/ is
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1199): Ordinary query
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1216): Running query: [SELECT passwd FROM mysql_auth WHERE username='usernick']
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1298): Checking with SHA1Sum
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1300): Auth succeeded
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1442): Making group query with auth_table=[mysql_auth], auth_user_field=[username], esc_user=[usernick], esc_group=[adm], auth_group_field=[groups], where_clause=[]
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1449): Group query created; [SELECT count(*) FROM mysql_auth WHERE username='usernick' and FIND_IN_SET('adm',groups)]
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1192): sec->dbh in /var/www/ is
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1199): Ordinary query
[Fri Mar 11 04:15:14 2005] [debug] mod_auth_mysql.c(1216): Running query: [SELECT count(*) FROM mysql_auth WHERE username='usernick' and FIND_IN_SET('adm',groups)]
[Fri Mar 11 04:15:14 2005] [crit] [client 10.1.1.66] configuration error: couldn't check access. No groups file?: /adm/, referer: https://my.server.net/
[Fri Mar 11 04:15:14 2005] [info] Connection to child 4 closed with unclean shutdown(server my.server.net:443, client 10.1.1.66)
[Fri Mar 11 04:15:16 2005] [info] Connection to child 1 established (server my.server.net:443, client 10.1.1.66)
[Fri Mar 11 04:15:16 2005] [info] Seeding PRNG with 272 bytes of entropy
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
