Your message dated Thu, 8 Sep 2005 19:58:10 +0200
with message-id <[EMAIL PROTECTED]>
has caused the Debian Bug report #323789,
regarding Turns itself on when require group is used
to be marked as having been forwarded to the upstream software
author(s) Brian Duggan <[EMAIL PROTECTED]>.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
---------------------------------------
Received: (at 323789-forwarded) by bugs.debian.org; 8 Sep 2005 17:58:22 +0000
>From [EMAIL PROTECTED] Thu Sep 08 10:58:22 2005
Return-path: <[EMAIL PROTECTED]>
Received: from starnet.skynet.com.pl (skynet.skynet.com.pl) [213.25.173.230]
by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
id 1EDQfF-0005Xv-00; Thu, 08 Sep 2005 10:58:22 -0700
Received: from unregister250204219081.c204.msk.pl ([81.219.204.250]
helo=localhost)
by skynet.skynet.com.pl with asmtp (Exim 3.35 #1 (Debian))
id 1EDQf5-0002Tp-00; Thu, 08 Sep 2005 19:58:11 +0200
Received: from porridge by localhost with local (Exim 4.52)
id 1EDQf4-0001gL-4T; Thu, 08 Sep 2005 19:58:10 +0200
Date: Thu, 8 Sep 2005 19:58:10 +0200
From: Marcin Owsiany <[EMAIL PROTECTED]>
To: Brian Duggan <[EMAIL PROTECTED]>
Cc: [EMAIL PROTECTED]
Subject: mod_auth_shadow turning itself on with require group
Message-ID: <[EMAIL PROTECTED]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.5.10i
X-Scanner: exiscan *1EDQf5-0002Tp-00*IlC.9OPS2gE*
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-3.0 required=4.0 tests=BAYES_00 autolearn=no
version=2.60-bugs.debian.org_2005_01_02
Hi!
I have received a bug report on mod_auth_shadow, which you can see with
all replies at http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=323789
The problem is that mod_auth_shadow always turns itself on, when
"require group <whatever>" is used in the same scope. This makes it
impossible to use any other authentication modules with "require group"
when mod_auth_shadow is loaded.
"AuthShadow off" seems to have no effect.
I could reproduce that with the following:
-------------------------------------------------
mkdir ~/public_html/test/
cat << END > ~/public_html/test/.htaccess
AuthShadow off
AuthType Basic
AuthName "My Test"
AuthUserFile /tmp/tuser
AuthGroupFile /tmp/tgroup
require group foogroup
END
echo 'oj:' > /tmp/tuser
echo 'foogroup: oj' > /tmp/tgroup
wget -S -O/dev/null --http-user=oj --http-password=''
http://localhost/~porridge/test/
-------------------------------------------------
error.log contains:
[Thu Sep 8 19:32:22 2005] [error] [client 127.0.0.1] access to
/~porridge/test/ failed. Reason: user oj not allowed access
Modifying apache configuration not to load auth_shadow (and removing the
"AuthShadow off" line) makes the above work as expected.
Please keep [EMAIL PROTECTED] in Cc when replying to this
message.
regards,
Marcin
--
Marcin Owsiany <[EMAIL PROTECTED]> http://marcin.owsiany.pl/
GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216
"Every program in development at MIT expands until it can read mail."
-- Unknown
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
