I have been trying to get this to work here for many hours now with no
luck. Right now it lets anyone (no authentication necessary). The PAM
config seems OK (it works for ssh with the same common-auth and
common-account as the apache2). If I uncomment either of the Require
statements I get the "could not open password file: (null)" error.
Error lines from log:
[Mon Mar 19 07:21:05 2007] [error] [client 192.168.19.2] (9)Bad file
descriptor: Could not open password file: (null)
[Mon Mar 19 07:21:05 2007] [error] [client 192.168.19.2] PAM: user
'peterson' - invalid account: Authentication service cannot retrieve
authentication info.
Pam is authenticating via pam_krb5(against AD) and pam_unix
(/etc/passwd).
Relevant Apache config:
<Location /svn>
DAV svn
SVNParentPath /var/lib/svn
AuthType Basic
AuthPAM_Enabled on
AuthPAM_FallThrough off
AuthBasicAuthoritative off
AuthName "Subversion repository"
# AuthzSVNAccessFile /var/lib/svn/svnaccess
# Require valid-user
# Require group svn-users
</Location>
mods-enabled are:
actions.load cache.load env.load php5.conf
alias.load cgi.load expires.load php5.load
auth_basic.load dav_fs.conf fcgid.conf rewrite.load
auth_digest.load dav_fs.load fcgid.load setenvif.load
authn_file.load dav.load headers.load speling.load
auth_pam.load dav_svn.conf include.load ssl.conf
authz_default.load dav_svn.load info.load ssl.load
authz_groupfile.load deflate.conf mime.load status.load
authz_host.load deflate.load mime_magic.conf suexec.load
authz_user.load dir.conf mime_magic.load usertrack.load
autoindex.load dir.load negotiation.load vhost_alias.load
Package versions:
apache2-mpm-prefork 2.2.3-3.3
libapache2-mod-auth-pam 1.1.1-6.1
libapache2-svn 1.4.2dfsg1-2
Does anyone have this working with Require group OR AuthzSVNAccessFile?
--
Trev Peterson
Advanced Reality
Email: [EMAIL PROTECTED]
Phone: +1 847 406 9018
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
